Innovative Software Helps Organizations Achieve Web Application Security Compliance

July 27, 2005 – Effective and more rapid security assessment of web applications is perhaps one of the more complex issues that organizations are dealing with today. Syhunt announced that its Sandcat Miner software now features a database of over 180 web application security checks, covering over 33 types of web security attacks.

The Sandcat Miner software helps organizations to ensure regulatory compliance and to minimize their risk posture.

“With the Sandcat suite of tools, organizations can proactively find security issues with their web sites and applications. The scanner module is the most comprehensive web vulnerability tool on the market, and the Miner module gives organizations the flexibility to find serious issues like SQL injections and buffer overflows in their environment before the bad guys do. With more attackers focusing on the application layer, it just makes sense to test it before someone else does it for you”, said Brent Huston, a leading security expert at MicroSolved and co-author of the book “Hack Proofing Your E-Commerce Site”.

Syhunt helps organizations address the most pressing compliance issues such as:

– Health Insurance Portability and Accountability Act (HIPAA):
The solution allows healthcare organizations to perform assessment of web applications and portals to identify areas of possible vulnerability to data disclosure, denial of service attacks or system compromise.

– Gramm-Leach-Bliley (GLBA)/Payment Card Industry (PCI) Data Security Standard/CA-SB1:
Financial organizations can harden home banking, customer service, ecommerce and other web-based applications and deployments.

– Sarbanes-Oxley:
Executive management systems can be assessed and data integrity risks can be mitigated through the use of Sandcat against web-based interfaces.

OWASP Top 20 Vulnerabilities and the Suite

As organizations look to adopt standards such as the OWASP Top Ten, an automated web application security testing solution is required, that can allow security professionals and application designers to identify the specific vulnerabilities of each web application. In recognition of this growing demand, the Syhunt Sandcat Miner software provides application specific intelligence by crawling an existing site and searching for issues based on the content discovered. The software also supports the SANS Top Twenty List of Critical Network Vulnerabilities, which is developed in cooperation with the FBI’s National Infrastructure Protection Center.

The Syhunt Sandcat Miner is a component of the Sandcat software suite, which includes a security hardening tool, vulnerability scanning and log analysis tools, and more. The result is a comprehensive solution that allows system and network administrators to identificate and mitigate thousands of potential vulnerabilities and misconfigurations.

About Syhunt Security

Syhunt is the global leader in web application security. Our team combine to over 8 years in the security industry, offering its unique security products and services to help customers, in more than 25 countries worldwide, increase the overall security of their Web application environments.

For more detailed info, visit www.syhunt.com

Syhunt is a registered trademark of Syhunt Security. All other brands and products referenced herein are acknowledged to be trademarks or registered trademarks of their respective holders.