Tenable One Web App Scanning
Unify web app and API scanning that’s simple, scalable, and automated. Whether it’s the top 10 risks from OWASP, vulnerable web app components or APIs, get comprehensive dynamic application security testing (DAST) with Tenable One Web App Scanning.
Eliminate application exposure with automated and scalable web application vulnerability scanning
Get comprehensive web app security
Use automated DAST and API scanning from the industry's largest vulnerability research team to secure your modern web applications.
Scan fast
See results in minutes
Deliver immediate value with fast web application scans to discover common cyber hygiene issues that run in two minutes or less.
Simplify setup
Set up intuitive scans
Set up a new web app scan in a few seconds using the same vulnerability management workflows you’re already familiar with. Configurez des tests automatisés hebdomadaires ou mensuels de toutes vos applications.
Unifie la visibilité
Integrate dashboards
Create fully customizable dashboards and widget visualizations to integrate IT, cloud, and web application vulnerability data into a single, unified view.
Installation flexible
Deploy as SaaS or on-prem
Use FedRAMP-authorized cloud security for scanning, or seamless on-premises integration via Tenable Security Center. Secure web apps against vulnerabilities, regardless of your deployment preference.
tenable one
La seule plateforme de gestion de l'exposition au monde optimisée par l'IA
Tenable One réduit le risque cyber en unifiant la visibilité, les analyses approfondies et l'action en matière de sécurité sur l'ensemble de la surface d'attaque, permettant aux entreprises de trouver et de corriger rapidement les faiblesses critiques.
See why customers choose Tenable One Web App Scanning
Being able to manage our infrastructure and web apps in the same interface — and see a snapshot of the results in a single pane of glass — has been a real highlight and a big win for us as we continue to grow and expand our business.
Web app scanning FAQs
-
What are the web application scanning capabilities of Tenable One?
- Web application scanning is a critical part of the Tenable One exposure management platform. Tenable One Web App Scanning is a dynamic application security testing (DAST) application. A DAST crawls a running web application through the front end to create a site map with all of the pages, links, and forms for testing. Once the DAST creates a site map, it interrogates the site through the front end to identify any vulnerabilities in the application’s custom code or known vulnerabilities in the third-party components that comprise the bulk of the application.
-
What kind of vulnerabilities does Tenable One Web App Scanning identify?
- Tenable One Web App Scanning identifies OWASP Top 10 web application vulnerabilities, such as cross-site scripting (XSS) and SQL injection in custom application code and vulnerable versions of third-party components running on your site. Les deux catégories de vulnérabilités sont essentielles pour garantir une couverture complète des vulnérabilités dans les applications web modernes.
-
Does Tenable One Web App Scanning identify misconfigurations or certificate issues?
- Oui, You can use Tenable One Web App Scanning to identify a number of cyber hygiene issues in web applications in two minutes or less using predefined scan templates. Le modèle de scan SSL/TLS recherche les certificats SSL/TLS émis de manière incorrecte ou qui expirent bientôt. Les utilisateurs peuvent ainsi éviter les avertissements et les redirections coûteux et gênants du navigateur.The Config Audit scan template checks for a number of server-side misconfigurations that leave web applications vulnerable to hacker reconnaissance or man-in-the-middle (MITM) attacks.
-
Can I tailor information that Tenable One Web App Scanning users have access to?
- Oui, Tenable One Web App Scanning includes role-based access control (RBAC). Les administrateurs ont la possibilité de créer des groupes d'utilisateurs et d'attribuer des autorisations utilisateur pour afficher et lancer des scans sur une base individuelle. Users will only see relevant scan data, so they can more easily focus their efforts and prioritize which vulnerabilities to remediate.
-
Can I create custom reports in Tenable One Web App Scanning?
- Oui, Tenable One Web App Scanning gives users the ability to create a variety of dashboards to tailor their reporting needs. Des rapports préconfigurés à destination de la direction sont disponibles pour informer les différents intervenants de l'entreprise des progrès des mesures de remédiation de l'équipe sans les inonder de détails techniques. Tenable One Web App Scanning also allows users to create fully-custom dashboards of scan data to track metrics that are relevant to their teams. Tenable Vulnerability Management and Tenable Web App Scanning users can also create fully integrated dashboards combining IT, cloud, and web application vulnerabilities for unified visibility across their attack surface.
-
Does Tenable One Web App Scanning scan single page applications?
- Oui, Tenable One Web App Scanning scans modern web applications, including single-page applications. While no scanning tool can guarantee 100% coverage of all application types and vulnerabilities, Tenable One Web App Scanning crawls and scans many of the most popular single-page application frameworks.
-
How often are new vulnerability detections added to Tenable One Web App Scanning?
- Tenable’s world-class Research Team built Tenable One Web App Scanning. Tenable Research continuously analyzes vulnerabilities and the threat landscape and adds new detections for third-party components and custom code vulnerability detection as it discovers new security issues.
-
Can I use Tenable One Web App Scanning to perform code reviews?
- Non. Web App Scanning in Tenable One provides dynamic application security testing (DAST), meant to test running applications and does not perform static code reviews. Les outils de tests statiques de sécurité des applications (SAST) effectuent des revues de code.
Tenable One
Demandez une démo
La plateforme de gestion de l'exposition alimentée par l'IA leader du secteur
Merci
Nous vous remercions de votre intérêt pour Tenable One.
Un représentant vous contactera prochainement.
Form ID: 7469
Form Name: one-eval
Form Class: c-form form-panel__global-form c-form--mkto js-mkto-no-css js-form-hanging-label c-form--hide-comments
Form Wrapper ID: one-eval-form-wrapper
Confirmation Class: one-eval-confirmform-modal
Simulate Success