* Tackling Web apps vulnerabilities If you are developing Web applications there are a number of issues that should be always on your mind. These include worrying about such things as performance, error handling and bugs. But as worrisome as these things are there’s something else that should keep you awake at night: Web application vulnerabilities.Hopefully being worried about this issue you will go out of your way to test for vulnerabilities. But for many developers the problem with vulnerability testing Web applications is it can be extremely time consuming and complicated.Aiming to alleviate this problem is Cenzic. Cenzic’s vulnerability test tool is Hailstorm, an automated penetration testing system that can probe for vulnerabilities as well as determine regulatory compliance and when problems are found, Hailstorm provides remediation advice.Hailstorm’s repertory of tests includes Web server version checks for out of date configurations, buffer overflow tests, SQL injections and cross-site scripting attacks. These tests are grouped in “policies” that can be edited and scheduled as test templates. Users can use test procedures from the SmartAttack Objects Library as well as create custom SmartAttack Objects to address new vulnerabilities as they arise and test specific application issues. Hailstorm can record a tester’s interactive session and then run its tests against the recorded subset of the site and delta reporting – the ability to report on changes in results between successive tests – makes the QA process much more streamlined.Hailstorm’s centralized architecture makes it possible for multiple testers to work collaboratively and the management dashboard – the console that displays results – provides a snapshot view of test results. Of course, having a tool and using it effectively are two different things so Cenzic offers consulting services to work with clients in technical staff training and to help develop test procedures. Cenzic can also provide the service of outsourcing testing.Hailstorm is priced starting from $15,000 per application per year. Related content news Cisco CCNA and AWS cloud networking rank among highest paying IT certifications Cloud expertise and security know-how remain critical in building today’s networks, and these skills pay top dollar, according to Skillsoft’s annual ranking of the most valuable IT certifications. Demand for talent continues to outweigh s By Denise Dubie Nov 30, 2023 7 mins Certifications Certifications Certifications news Mainframe modernization gets a boost from Kyndryl, AWS collaboration Kyndryl and AWS have expanded their partnership to help enterprise customers simplify and accelerate their mainframe modernization initiatives. By Michael Cooney Nov 30, 2023 4 mins Mainframes Cloud Computing Data Center news AWS and Nvidia partner on Project Ceiba, a GPU-powered AI supercomputer The companies are extending their AI partnership, and one key initiative is a supercomputer that will be integrated with AWS services and used by Nvidia’s own R&D teams. By Andy Patrizio Nov 30, 2023 3 mins CPUs and Processors Generative AI Supercomputers news VMware stung by defections and layoffs after Broadcom close Layoffs and executive departures are expected after an acquisition, but there's also concern about VMware customer retention. By Andy Patrizio Nov 30, 2023 3 mins Virtualization Data Center Industry Podcasts Videos Resources Events NEWSLETTERS Newsletter Promo Module Test Description for newsletter promo module. Please enter a valid email address Subscribe