Comprehensive. Integrated. Actionable insight. Deep Security for Web Apps provides a complete suite of security capabilities in one integrated solution, saving you time and hassle.
Web applications make doing business easier and more cost-effective, but they carry risks. How do you know your applications are safe? Cyberattacks are growing in number and complexity, and you need security software that can keep up.
Trend Micro has developed the first comprehensive service designed to detect vulnerabilities and protect web applications in a single integrated solution. Deep Security for Web Apps offers:
With web apps growing rapidly in number and complexity—plus the frequent changes that a 24/7 online world demands—application vulnerabilities can emerge at any time. Regulations like PCI DSS require regular scanning of applications and platforms, but most organizations only test their applications a couple times a year. These scans typically generate a large number of false positives, and the work required to identify and prioritize the most important risks is far too time consuming.
Trend Micro Deep Security for Web Apps provides automated scanning of platform and application layers, plus periodic site audits by security experts. We also remove false positives, saving you time and effort by allowing you to focus on those vulnerabilities that truly represent a threat. Our solution includes:
You’ve discovered a serious vulnerability. Now what? With each moment that passes without remediation, you risk exploitation and the resulting impact to reputation, brand, and customer trust. But fixing web application code or patching platforms is time consuming.
Deep Security for Web Apps allows you to shield vulnerabilities by providing WAF rules:
Native Rule Export for Leading Web Application Firewalls
Deep Security for Web Apps is subscription-based Software as a Service (SaaS) offering that combines automated scanning with periodic, human augmented audits of your web applications to find any of the OWASP Top 10 web app security risks present. Our automated scanning imitates user interaction and crawls your website for application-layer vulnerabilities.
With more than 54,500 checks across more than 14,000 vulnerabilities, including all OWASP and Web App Security Consortium testing criteria, Trend Micro Deep Security for Web Apps provides application vulnerability testing to highest industry standards. It detects technical flaws, such as cross-site scripting and SQL injection, as well as logical flaws, such as account privilege expansion and improper session handling.
Trend Micro Deep Security for Web Apps provides a detailed description, CVE-ID, compliance status, list of affected components, and suggested solutions for the vulnerabilities found in your web applications.
Deep Security for Web Apps produces detailed, auditable reports that document vulnerabilities, remediation, and policy compliance status. You can create customized reports of your platform scanning, application scanning, and malware detection results. Web App Security also comes with these predefined summary reports:
You can generate one-time reports or schedule recurring reports that are created and emailed to recipients on a regular basis.
The Deep Security for Web Apps console also has a dashboard that you can customize with up to 17 different widgets to provide a visual overview of the status of your system.
Using a sandboxing technology, the malware engine leverages a database of over three million malware signatures and state-of-the-art behavioral analysis using file and registry detection. This allows the product to find both known and zero-day malware before it impacts your customers or is detected by a blacklisting service.
Deep Security for Web Apps provides automatic generation of XML configuration files, which you can deploy to a web application firewall (WAF) to provide rapid protection against vulnerabilities found in application scanning results. You can use Deep Security for Web Apps to automatically generate rules for these WAF products:
Although it works with many browsers, Deep Security for Web Apps has been designed and tested to work best with the latest Microsoft Internet Explorer,Mozilla Firefox, Safari, and Chrome browsers.
Please ensure that your network does not block scanning traffic from the following IP addresses, which belong to the Trend Micro Web App Security data center:
Application scanning and malware detection are not affected by reverse proxies.
Using a reverse proxy server only affects the results for platform scanning. When Trend Micro Deep Security for Web Apps performs a platform scan, it probes the OS and web server layers of your server to discover vulnerabilities. Platform scanning is effective only if the machine that hosts the web server is directly visible to Deep Security for Web Apps. If you are running your web server behind a reverse proxy, Deep Security for Web Apps will scan and return results for the reverse proxy machine and not the target web server machine.
Scanning will increase the load on your systems, so you should schedule scans for times when your site is not typically busy.
The Deep Security for Web Apps application scanning feature uses remote scanning to detect vulnerabilities at the web application level. By default, when you add a web application to Deep Security for Web Apps, all pages in the web app will be scanned. This includes pages with HTML forms, which will be filled with test information and submitted. If your web application is written to trigger email messages on form submissions, the emails would get sent to the recipients with the test information included. In some cases, a large number of form submissions will be made during application scanning.
If you want to exclude select HTML form pages from your application scans, please contact Trend Micro Customer Support. Please note that such exclusions should be minimized as much as possible since the excluded pages will not be tested for application vulnerabilities. If you choose to exclude pages, please invest extra effort to ensure all external input on those pages is sanitized and appropriately encoded before such data is stored or displayed.
You can access the Deep Security for Web Apps online help from the Help menu in the Web App Security console. You can also go to https://docs.trendmicro.com/all/ent/dswa/en-us/help/dswahelp.html.
You can use a scan root to specify the starting point for web application scans. If you do not specify a scan root, Deep Security for Web Apps will use the web application URL as the starting point and will crawl all sub-directories. The scan root can be a web path, a web page, or both. For example, if your web application is accessed at http://www.trendmicro.com/csr/index.aspx, the base web application URL is http://www.trendmicro.com/ and the scan root should be /csr/index.aspx.
You can also use a restrict path to limit the scanner to a specific directory path. The path should begin with a slash (/), for example: /directory. All sub-directories of that path will be included. If you want to further define which directories will be crawled, you can use the web application scope filters.
For details on the Scan Root, Restrict Path, and Web Application Scope settings, please see the Deep Security for Web Apps Help.