On the WAS side, our effort was to build upon the new scanner that we recently released and add features that would provide
Some of the major advances made on WAS side are as follows:
Signatures were added to find the following vulnerabilities:
Config driven guided scan support was introduced. Guides are lists of actions that will be taken automatically when all elements defined in that set of actions is encountered during the crawl. Multiple guides can be defined per site. This will help crawler go to pages which it could not go before because of the need for special actions. For example, say there is a multi-step wizard, where certain fields and inputs need to be provided to reach the next step unless crawler knows what these actions are there is no way it goes further.
Now in such cases, guided scan config can be added which tells crawler exactly what actions need to be taken. For customers needing such ability are requested to contact our support team, they would write the necessary config for your site and add it.
Also, we had enabled the ability to add certain site-specific configs which would help customers create certain exceptions like
We have added the Aging Summary widget for AA, MM and VA scans. With this customers can easily identify vulnerabilities that are older than a certain time period. Which would help customers prioritize the fix for vulnerabilities?
BIFURCATION OF MANUAL AND AUTOMATED VULNERABILITY AS A WIDGET IN DASHBOARD
With this customers can clearly see the vulnerabilities found through Manual PT vs Automated scans in the application audit widgets in the portal using the Manual PT & Automated scan filters available in the widgets The changes are done both in the Dashboard page and application audit page
At Indusface, Vivek owns the product roadmap and is responsible for gathering and prioritizing product and customer requirements, defining the product vision, working closely with engineering, sales, marketing and support to build and release the product and ensuring revenue and customer satisfaction goals are met. A technologist with 6+ years of product management experience and 10+ years of total professional work experience, Vivek has worked with domestic and international start-ups with proven ability to define, design and develop technology products, and effectively market product benefits and capabilities to customers.