Dependable Application Security Testing with AppScan V.10.0.5

Having a tool that facilitates your continuous application security is crucial to your success. That is why AppScan is committed to continuously deliver secure technological innovations and our latest version 10.0.5 is a testament to that commitment.

In this blog, I highlight some of the new and improved features in AppScan V.10.0.5, by product line. I also encourage you to check out our “AppScan Tuesdays” Special Event, where we provide additional details about many of the new capabilities that are outlined below.

HCL AppScan Enterprise V10.0.5 Enhancements 

V10.0.5 enhancements for AppScan Enterprise include the following:

  • Interactive Application Security Testing (IAST) is now officially released. In addition to Java, IAST now supports .NET and Node.js.
  • New and improved “How to Fix” information (includes advisory, fix recommendation, and more) is now available, providing you with detailed code-specific solutions to potential vulnerabilities for multiple code languages.
  • Enhanced ASE Admin utility to enable automated password change.
  • Improved XSS analysis through browser-based validation.
  • New compliance reporting that supports the latest DISA STIG V5R1.
  • New application tests allow you to: Detect misconfigured or insecure referrer policies, test if host header is parsed dynamically in applications, and see if CORS policy originated from arbitrary origin header value.

For more information about our AppScan Enterprise enhancements, visit our Recent Updates page.

 

HCL AppScan Source V10.0.5 Enhancements 

V10.0.5 enhancements for AppScan Source include the following:

  • New and improved “How to Fix” information (includes advisory, fix recommendation, and more) is now available, providing you with detailed code-specific solutions to potential vulnerabilities for multiple code languages.
  • Enhanced data migration utility, enabling standalone utility to migrate shared data from Solid DB/Oracle to ASE.
  • Support for HCL Common Local License Server 2.0 is available.
  • New compliance reporting that supports the latest DISA STIG V5R1.
  • Minor new features include: Configurable option to include or exclude IFA excluded findings, improved performance to generate large PDF reports, and print system resources availability in log.

For more information about our AppScan Source enhancements, visit our Recent Updates page.

 

HCL AppScan Standard V10.0.5 Enhancements 

V10.0.5 enhancements for AppScan Standard include the following:

  • New and improved “How to Fix” information (includes advisory, fix recommendation and more) is now available, providing you with detailed code-specific solutions to potential vulnerabilities for multiple code languages.
  • Improved XSS analysis through browser-based validation.
  • Non-standard headers can now be excluded from testing, like parameters and cookies.
  • New application tests: Allow you to detect misconfigured or insecure referrer policies, Test if host header is parsed dynamically in applications, and see if CORS policy originated from arbitrary origin header value.
  • New compliance reporting that supports the latest DISA STIG V5R1.

For more information about our AppScan Standard enhancements, visit our Recent Updates page.

 

Check out our “AppScan Tuesdays” Special Event & Learn More

To learn more about the enhancements that are outlined above, check out into our “AppScan Tuesdays” special event.

To catch up on all of our latest AppScan developments, check out and bookmark our “This is AppScan” YouTube channel.

Comment wrap
Further Reading
article-img
Secure DevOps | September 26, 2022
Prioritizing the Fix with HCL AppScan and Auto Correlation
Web applications face an increasing number of security threats every day. Fortunately, application security testing platforms like HCL AppScan are constantly evolving to recognize new vulnerabilities.
article-img
Secure DevOps | July 29, 2022
HCL AppScan V10.0.8 Release Updates
HCL AppScan recently released HCL AppScan Source 10.0.8. To learn more about the latest release keep reading below.
article-img
Secure DevOps | June 24, 2022
Automatic Issue Correlation Now Part of HCL AppScan
There is no silver bullet that can solve the application security challenge. Each of the core technologies (IAST, DAST, and SAST) has strengths and weaknesses.Auto Issue Correlation allows us to leverage the strengths of each technology, while overcoming weaknesses with the advantages of the others. Furthermore, Auto Issue Correlation enhances your AST capabilities, improves your prioritization process and reduces remediation time and effort.
Close
Filters result by
Sort:
|