provided by: 
Originally published at Internet.comWatchfire AppScan helps ensure the security and compliance of Web applications throughout the software development lifecycle. AppScan scans Web applications within your infrastructure, tests for security issues and provides actionable reports and fix recommendations. AppScan features scanning capabilities, remediation recommendations, and a reporting system for developers, auditors, penetration testers and consultants.
The latest AppScan release boasts improved capabilities for identifying application weaknesses and also provides fix recommendations. Other enhancements noted by the vendor include improved reporting accuracy, real time view of scan results, screenshots included in reports and enhanced scanning speed.
Other new features include:
- A Web Services Explorer which lets users examine the different methods incorporated in the Web Service, manipulate input data and examine feedback from the service. This new capability performs Web Services application scans to simulate application-to-application interactions, as opposed to user-to-application interactions. It provides a range of SOAP tests. AppScan also now supports JavaScript execution and parsing and Flash parsing.
- AppScan includes automated support for the PCI Data Security Standard, to identify security vulnerabilities that impact PCI compliance; as well as two new ISO standards (17799 and 27001). AppScan features more than 34 out-of-the-box compliance reports.
- New testing utilities complement manual testing. Token Analyzer provides various tests for Web application session tokens to determine how secure the application is against session theft. Authentication Tester is a brute force-like testing utility that detects weak username-password combinations that could be used to gain access to a Web application.Author: Company Rep
Read article at Internet.com site