 AppTrust Solutions Enable Organizations to Develop Secure Applications
Tampa, FL: November 12, 2009 - FYRM Associates, an information security professional services organization, today announced the public launch of AppTrust solutions. Through the AppTrust Assessment, Training, and Certification offering, FYRM Associates enables organizations to develop secure applications in an efficient and cost-cutting manner.
The AppTrust solutions help organizations identify lapses in security control implementation and create application or organization-wide development plans to correct the root cause of any identified vulnerabilities. This prevents wasted time spent tracking down vulnerabilities and creating patchwork remediation. Under the AppTrust offering, FYRM Associates provides organizations with a variety of solutions including: application penetration tests (run-time analysis), source code reviews (static analysis), design and architecture reviews, or any combination of these or other application security related assessments. All of these solutions are performed by FYRM Associates professionals who provide an efficient and comprehensive assessment that is customized for each customer.
In addition, FYRM also offers the AppTrust Developer Training Class which provides students with the necessary knowledge to develop secure applications and create constructive environments that encourage secure application development. Through three days of intensive instruction, this course provides developers, and ultimately entire organizations, with the ability to understand and combat current application security threats. As a trusted name in the security industry, AppTrust Certified Developers (ATCD) provide a competitive advantage that organizations utilize to market their secure applications.
All of these solutions culminate with the highly-desired AppTrust Application Certification (ATAC)—the new gold standard for secure applications and development. The ATAC encompasses a thorough assessment of the in-scope applications and training for development personnel that meets or exceeds all public regulations and industry standards. Displaying the AppTrust logo on an application demonstrates a commitment to implement secure applications, which allows organizations to promote their security status to customers to prove they can be trusted withsensitive information.
For more information on the AppTrust offering and solutions, visit www.fyrmassociates.com/apptrust.html.
FYRM Associates, an information security professional services organization, offers custom consulting solutions to help organizations achieve their information security goals. FYRM Associates specializes in application security analysis, testing, and training using proven methodologies and processes. Contact FYRM Associates at 877.752.7170 for more information or visit www.fyrmassociates.com.
Cross Site Scripting Anonymous Browser (XAB) Proof-of-Concept Released
Tampa, FL: May 19, 2009 - FYRM Associates, an information security professional services organization, today announced the release of the Cross Site Scripting Anonymous Browser (XAB) tool. Matt Flick, Principal at FYRM Associates, first debuted the XAB tool at the Black Hat DC Briefings in February of this year.
"After much delay, I am proud to see the first release of the XAB tool," said Mr. Flick. "It is my hope that other researchers will use our work for the XAB tool as a launching point for their further research in the areas of XSS, privacy, and anonymity."
The XAB Proof-of-Concept code has been published on Sourceforge and can be downloaded from the following location:
http://sourceforge.net/projects/xab
FYRM Associates, an information security professional services organization, offers custom consulting services to help organizations achieve their information security goals. FYRM specializes in application security analysis, testing, and training using proven methodologies and processes. Contact FYRM Associates at 877.752.7170 for more information or visit www.fyrmassociates.com.
###
Nessus Output Parsing Tool Simplifies Reporting and Interpretation of Vulnerability Scan Results
Tampa, FL: November 4, 2008 - FYRM Associates, an information security professional services organization, today announced the public release of NessusPBE version 1.0. This free Nessus parsing tool makes it easy to store, sort, filter, and report the results of Nessus vulnerability scans using common office products such as Microsoft Excel and OpenOffice Spreadsheet.
NessusPBE features a simple interface that allows users to quickly convert the massive amount of data generated by a typical Nessus vulnerability scan into manageable output that in turn eases reporting and prioritized remediation. The public and free release of this tool makes it the first of its kind to be available industry-wide.
"NessusPBE is indicative of FYRM's dedication to high-quality and efficient tools," said Matthew Flick, Principal at FYRM Associates. "Version 1.0 is focused on output and benefits to the user. Later versions will expand on the original functionality and enable users to manage their vulnerability scan results through additional customization options.”
NessusPBE version 1.0 is available for download at www.fyrmassociates.com on the Tools page.
FYRM Associates, an information security professional services organization, offers custom consulting services to help organizations achieve their information security goals. FYRM specializes in application security analysis, testing, and training using proven methodologies and processes. Contact FYRM Associates at 877.752.7170 for more information or visit www.fyrmassociates.com.
###
Older News > |
