AppScan automates the manual task of auditing Web applications delivering accelerated ROI, enhanced reliability and flexibility to empower users, regardless of skill level, in application security audits at all stages of the application lifecycle. AppScan elevates application risk assessment to a higher level through automation and customization. AppScan is the only product that delivers a comprehensive view of the web application providing an application security assessment benchmark.

The brain behind AppScan, the Expert Application Security System, helps automate your security process and keep it updated. Using Sanctum's Policy Recognition EngineTM, AppScan dynamically learns each unique Web application by analyzing the application during the crawl stage. The knowledge database provides a continuous update of vulnerabilities and hacking techniques to the user. While AppScan can automatically crawl through the entire site unassisted, the user can choose to customize the engine and reduce the crawl path to eliminate unnecessary scanning. The user can also define the types of attacks to execute and perform them either automatically or manually. Using the Expert System, AppScan automatically assigns severity and success ratings for tested attacks and provides expert advice for fixing the vulnerabilities. Finally, predefined reports can be customized to reflect the expertise and information needed by the user. With AppScan, our customers and partners have a powerful, customizable tool that will help uncover and repair loopholes - before a hacker can find and exploit them.