Imperva SecureSphere Web Application Firewall
The SecureSphere Web Application Firewall from Imperva offers up some interesting functionality.
The SecureSphere Web Application Firewall from Imperva offers up some interesting functionality.
WebDefend from Trustwave offers up some excellent features beyond strictly being a firewall.
The FortiWeb-400B from Fortinet provides a full application firewall that protects web-facing applications and data from theft, leakage or attack.
The Sentry WAF from Forum Systems is a full-feature web application firewall that provides comprehensive protection to almost any web application, including HTML, JSON, XML and SOAP.
XyberShield combats web application attacks, such as SQL injection or cross-site scripting, by using a form of behavior profiling called XyberFrames.
Fortify Source Code Analysis Suite 4.5 is a suite of components used to perform static source code analysis.Strengths Powerful analysis of source code. Solid documentation with an emphasis on workflow and secure coding best practices. Weaknesses The various components have a disparate look and feel. Non-coders should steer clear from code analysis tasks from a usability perspective. Verdict An excellent source code analyzer that preaches the value and benefits of integration within the software development life cycle.
HP WebInspect 7.7 (SPI Dynamics is now part of HP Software) is a standalone web application testing product.
IBM’s Rational AppScan 7.7 (Watchfire is now an IBM company) is a standalone web application assessment product that is part of IBM’s Rational software group.
Ounce Labs 5.0 is a static source code analysis solution based primarily on two separate components.
iSEC Partners Security QA Toolbar is a browser-based add-in for Internet Explorer, and is used to perform web application vulnerability testing directly within the browser environment.