Dependable Application Security Testing with AppScan V.10.0.5

Having a tool that facilitates your continuous application security is crucial to your success. That is why AppScan is committed to continuously deliver secure technological innovations and our latest version 10.0.5 is a testament to that commitment.

In this blog, I highlight some of the new and improved features in AppScan V.10.0.5, by product line. I also encourage you to check out our “AppScan Tuesdays” Special Event, where we provide additional details about many of the new capabilities that are outlined below.

 

HCL AppScan Enterprise V10.0.5 Enhancements 

V10.0.5 enhancements for AppScan Enterprise include the following:

  • Interactive Application Security Testing (IAST) is now officially released. In addition to Java, IAST now supports .NET and Node.js.
  • New and improved “How to Fix” information (includes advisory, fix recommendation, and more) is now available, providing you with detailed code-specific solutions to potential vulnerabilities for multiple code languages.
  • Enhanced ASE Admin utility to enable automated password change.
  • Improved XSS analysis through browser-based validation.
  • New compliance reporting that supports the latest DISA STIG V5R1.
  • New application tests allow you to: Detect misconfigured or insecure referrer policies, test if host header is parsed dynamically in applications, and see if CORS policy originated from arbitrary origin header value.

For more information about our AppScan Enterprise enhancements, visit our Recent Updates page.

 

HCL AppScan Source V10.0.5 Enhancements 

V10.0.5 enhancements for AppScan Source include the following:

  • New and improved “How to Fix” information (includes advisory, fix recommendation, and more) is now available, providing you with detailed code-specific solutions to potential vulnerabilities for multiple code languages.
  • Enhanced data migration utility, enabling standalone utility to migrate shared data from Solid DB/Oracle to ASE.
  • Support for HCL Common Local License Server 2.0 is available.
  • New compliance reporting that supports the latest DISA STIG V5R1.
  • Minor new features include: Configurable option to include or exclude IFA excluded findings, improved performance to generate large PDF reports, and print system resources availability in log.

For more information about our AppScan Source enhancements, visit our Recent Updates page.

 

HCL AppScan Standard V10.0.5 Enhancements 

V10.0.5 enhancements for AppScan Standard include the following:

  • New and improved “How to Fix” information (includes advisory, fix recommendation and more) is now available, providing you with detailed code-specific solutions to potential vulnerabilities for multiple code languages.
  • Improved XSS analysis through browser-based validation.
  • Non-standard headers can now be excluded from testing, like parameters and cookies.
  • New application tests: Allow you to detect misconfigured or insecure referrer policies, Test if host header is parsed dynamically in applications, and see if CORS policy originated from arbitrary origin header value.
  • New compliance reporting that supports the latest DISA STIG V5R1.

For more information about our AppScan Standard enhancements, visit our Recent Updates page.

 

Check out our “AppScan Tuesdays” Special Event & Learn More

To learn more about the enhancements that are outlined above, check out into our “AppScan Tuesdays” special event.

To catch up on all of our latest AppScan developments, check out and bookmark our “This is AppScan” YouTube channel.

Comment wrap
Further Reading
article-img
Secure DevOps | April 28, 2022
Latest Version of AppScan Standard Now Available
AppScan standard has been a market-leading DAST solution for the last 20 years with evolving capabilities throughout the years.
article-img
Secure DevOps | April 25, 2022
HCL Software recognized by Gartner as a Leader in the April 2022 Magic Quadrant for Application Security Testing
HCL AppScan has been positioned by Gartner as a leader in the Magic Quadrant for Application Security Testing for the second consecutive year.
article-img
Secure DevOps | April 4, 2022
SpringShell Vulnerability Detected
Two new Spring Framework vulnerabilities have surfaced over this last week, and both are considered critical.
Close
Filters result by
Sort:
|