Search:hypersource - Source Code Verification
art of defence is delivering the worlds most advanced Web code analysis solution using source code verification.
Precise Automated Security Assessment Using Static Analysis
This technology uses automated static analysis to verify the security of Web application code during software development. hypersource, art of defence´s source code verification tool, comes with a built-in compiler which allows for scans of the source code independent of the build enviroment. Since hypersource verifies directly against source code, it is more effective in finding vulnerabilities such as Cross-Site Scripting (XSS) and SQL Injection, and allows for the provision of fix suggestions.
Automated Secure Development Process
Current software development practices tend to view security as a back-end issue - meaning that it is dealt with after development, either by trying to mitigate attacks or through an alteration and modification process that attempts to remediate runtime errors. These approaches have proven to be inefficient, costly and time consuming at best. The reason is that the solutions adopted by the current paradigm, such as vulnerability assessment, penetration testing and manual code review, must be performed after the software is completely up-and-running and generally
a) overlook a large number of vulnerabilities,
b) require manual assessment to locate these vulnerabilities,
c) are costly, and
d) have a relatively lowsuccess rate.
With its patent-pending, leading-edge source code verification technology, art of defence is shifting that paradigm by incorporating security directly into the development process.
The hypersource verification process is completely automated and
can repeatedly be scheduled into any stage of the software development
lifecycle (SDLC) enabling development of better, stronger, safer software.
How does it work?
hypersource utilizes the latest verification technology to analyze source code. These processes form an overall picture of the code, describe the functions and systematically check for vulnerabilities. The vulnerabilities are then traced and checked for severity, depth and scope, making hypersource the most advanced, most effective, and most comprehensive solution available to date.
hypersource Workbench
hypersource Workbench was designed with the individual developer in mind and provides an easily navigable Integrated Design Environment (IDE). Source code can be retrieved from any remote source code repository, scanned, analyzed and fixed without having to leave the IDE.
hypersource Workbench also provides the art of defence Traceback and Smart Remediation features, which identify the root cause of a vulnerability and provide fix suggestions.
hypersource Enterprise
hypersource Enterprise is the first automated static analysis product that offers a Webbased interface for source code scanning. Shipped as a Web 2.0-enabled security appliance, hypersource Enterprise provides CSOs,CIOs and Development Managers with a tool to supervise entire projects and teams,provide general progress reports,and scan large amounts of code. It also supports company-wide coverage by offering ubiquitous access to multiple users that log in with Web browsers.
