NORTHPORT, N.Y. – July 31, 2019 – Code Dx, Inc., a provider of an award-winning application security management solution that automates and accelerates the discovery, prioritization, and risk management of software vulnerabilities, today announced the release of Code Dx Enterprise 4.2. Code Dx Enterprise now lets users identify, prioritize and manage their network/ infrastructure vulnerabilities in addition to weaknesses found in their applications. Code Dx Enterprise 4.2 also offers two-way Jira integration, further automating the vulnerability management processes.
“By being able to correlate network vulnerabilities with AppSec results in Code Dx Enterprise, users can more easily prioritize which errors are the most functionally dangerous,” explains Ken Prole, CSSLP, Code Dx, Inc. CTO. “With the holistic view of vulnerabilities across multiple security layers provided by Code Dx Enterprise, users are now able to better manage their organization’s overall cybersecurity risk posture from one convenient central hub.”
To provide this new network/infrastructure vulnerability category, two new tools were integrated with Code Dx Enterprise: Nessus and Nmap. These tools are both scanners that check for vulnerabilities in networks and server configurations.
The other major upgrade—the addition of two-way Jira integration—enables Code Dx Enterprise to automate opening and closing tickets in Jira, allowing issues to be assigned and tracked much faster. Tickets are automatically generated, and include the vulnerability information, remediation guidance, and a code snippet and location of the error to help developers easily fix a given issue.
This new feature ensures that the tickets are high quality, and eliminates the human error and guesswork often associated with locating a vulnerability. The code snippets are especially useful for DAST (dynamic application security testing) and pen-testing tools, as developers must work backwards within the code base to find the cause.
About Code Dx
Code Dx, Inc. provides an award-winning application security management solution that automates and accelerates the discovery, prioritization, and risk management of software vulnerabilities. The Code Dx Enterprise solution orchestrates Application Security Testing (AST) tools, consolidates the results into a single view for quick and easy prioritization and remediation, and provides reports and AppSec metrics for tracking the processes and progress of an AppSec team. The core technology was partially funded by the Department of Homeland Security Science & Technology (DHS S&T) to help secure the nation’s software supply chain. For more information, please contact Code Dx at (631) 759-3993 or Info@CodeDx.com.
All trademarks, trade names, service marks, and logos referenced herein belong to their respective parties.
- Karen Higgins
- A&E Communications for Code Dx, Inc.
- Jennifer Hogan
- The Channel Company