NEW YORK, March 22, 2011 /PRNewswire/ -- Today, the successful New York City IT security consultancy, NopSec, Inc., announced the addition of two new modules to its branded Vulnerability Risk Management Solution - VRM - that enables enterprises to effectively manage IT security vulnerabilities above and beyond those related to network infrastructure. The addition of the Web Application Assessment module and the Internal Assessment module offer VRM users even more vulnerability detection power in the areas of Web applications and internal network assets.
NopSec VRM Web Application Assessment module identifies security vulnerabilities and mis-configurations in the organization's Web application infrastructure, thus protecting important and confidential business and customer information. The module packs powerful "spidering" and state-of-the-art vulnerability detection as its most important features. It is also able to cover all WASC Threat Classification v2.0 attack and weakness categories. Unlike other scanners, the Web Application Assessment module takes into account the dynamic nature of Web applications and can detect changes encountered while traveling through the paths of a Web application's complexity. Users get an informative and interactive Chart Dashboard, and visual renderings of the affected and vulnerable Web application's pages. In addition, the HTML and PDF reports and an interactive Trouble Ticketing System are part of the framework's integrated features.
NopSec VRM Internal Network Assessment module allows organizations to perform security assessments inside the organization through an easy-to-install hardware or virtual scanning appliance. The scanning appliance connects back to the NopSec VRM customer instance in the cloud, thus allowing to "remote-control" the scan happening in the internal network. It allows users to perform vulnerability assessments on the internal network assets and on the internal Web application QA environments. The engine combines extensive vulnerability checks updated on a daily basis and produces concise, straightforward, "false positive"-free reports on the organization's vulnerabilities.
About NopSec, Inc.
NopSec, Inc. is a New York City-based, privately held company founded by seasoned IT security professionals. The company's customers span a wide range of sectors, including finance, banking, law, entertainment, e-commerce and media. All IT security offerings deliver cost-effective premium level service to customers. NopSec's unique approach is tailored to each organization's security development lifecycle, carefully evaluating risk and assessing appropriate security controls.
SOURCE NopSec, Inc.