Dependable Application Security Testing with AppScan V.10.0.5

Having a tool that facilitates your continuous application security is crucial to your success. That is why AppScan is committed to continuously deliver secure technological innovations and our latest version 10.0.5 is a testament to that commitment.

In this blog, I highlight some of the new and improved features in AppScan V.10.0.5, by product line. I also encourage you to check out our “AppScan Tuesdays” Special Event, where we provide additional details about many of the new capabilities that are outlined below.

 

HCL AppScan Enterprise V10.0.5 Enhancements 

V10.0.5 enhancements for AppScan Enterprise include the following:

  • Interactive Application Security Testing (IAST) is now officially released. In addition to Java, IAST now supports .NET and Node.js.
  • New and improved “How to Fix” information (includes advisory, fix recommendation, and more) is now available, providing you with detailed code-specific solutions to potential vulnerabilities for multiple code languages.
  • Enhanced ASE Admin utility to enable automated password change.
  • Improved XSS analysis through browser-based validation.
  • New compliance reporting that supports the latest DISA STIG V5R1.
  • New application tests allow you to: Detect misconfigured or insecure referrer policies, test if host header is parsed dynamically in applications, and see if CORS policy originated from arbitrary origin header value.

For more information about our AppScan Enterprise enhancements, visit our Recent Updates page.

 

HCL AppScan Source V10.0.5 Enhancements 

V10.0.5 enhancements for AppScan Source include the following:

  • New and improved “How to Fix” information (includes advisory, fix recommendation, and more) is now available, providing you with detailed code-specific solutions to potential vulnerabilities for multiple code languages.
  • Enhanced data migration utility, enabling standalone utility to migrate shared data from Solid DB/Oracle to ASE.
  • Support for HCL Common Local License Server 2.0 is available.
  • New compliance reporting that supports the latest DISA STIG V5R1.
  • Minor new features include: Configurable option to include or exclude IFA excluded findings, improved performance to generate large PDF reports, and print system resources availability in log.

For more information about our AppScan Source enhancements, visit our Recent Updates page.

 

HCL AppScan Standard V10.0.5 Enhancements 

V10.0.5 enhancements for AppScan Standard include the following:

  • New and improved “How to Fix” information (includes advisory, fix recommendation and more) is now available, providing you with detailed code-specific solutions to potential vulnerabilities for multiple code languages.
  • Improved XSS analysis through browser-based validation.
  • Non-standard headers can now be excluded from testing, like parameters and cookies.
  • New application tests: Allow you to detect misconfigured or insecure referrer policies, Test if host header is parsed dynamically in applications, and see if CORS policy originated from arbitrary origin header value.
  • New compliance reporting that supports the latest DISA STIG V5R1.

For more information about our AppScan Standard enhancements, visit our Recent Updates page.

 

Check out our “AppScan Tuesdays” Special Event & Learn More

To learn more about the enhancements that are outlined above, check out into our “AppScan Tuesdays” special event.

To catch up on all of our latest AppScan developments, check out and bookmark our “This is AppScan” YouTube channel.

Comment wrap
Further Reading
article-img
Secure DevOps | August 6, 2021
Secure your Mobile Applications with AppScan’s SAST Capabilities
AppScan’s breadth of language support (including mobile) in SAST and new offering of IAST security testing provides better coverage for the entire solution whether the client is running their application on a browser, desktop, or mobile OS
Close