SmartDec Scanner will make your current Security Development Life Cycle (SDLC) complete by adding a convenient tool for system safety testing process. The problem is that all systems are different in terms of complexity, required components and expected functionality. SmartDec Scanner was developed in such a way, that it can be seamlessly integrated into SDLC of any system. When integrated in development process SmartDec Scanner significantly reduces frequency of vulnerabilities in the final product.
SmartDec Scanner supports the Git repository, Eclipse, Visual Studio, and Xcode development environments; CI/CD Jenkins and TeamCity servers, as well as Maven, Gradle, and SBT build automation tools, thus, allowing a user to establish quality control, automate new software build verification, reduce spent time, and implement SDLC. Built-in API, which uses a JSON API and command line interface, provides even more powerful integration and automation capabilities. To improve the cybersecurity level, developers can be granted different access rights.
SmartDec Scanner basic version offers integration with Atlassian JIRA issue tracking system. However, if necessary, any other system can be supported. Such integration allows security officers to initiate vulnerability and undocumented feature treatment jobs and track progress directly in the system (e.g. assign code modification to a development team or a WAF rule setup to system administrators).
In order to meet users’ needs, SmartDec Scanner can be either deployed at a customer’s site or be provided as a SmartDec cloud-based service, thus, enabling a security team to select the optimal solution to keep the system safe.