Market Overview

Application Security, Inc.'s AppDetectivePro Empowers Security, Risk, and IT Staff with Comprehensive Database Vulnerability, Configuration, and Access Control Assessment


Application Security, Inc. (AppSecInc), the leading provider of database security solutions for the enterprise, today announced the latest release of its database scanning tool, AppDetectivePro. Expanded capabilities and a new user interface provide security, risk and IT audit professionals with best-in-class database vulnerability, configuration and access control assessment. The new tool allows organizations to quickly and easily understand their security posture and capabilities to proactively remediate vulnerabilities and protect sensitive information.

AppDetectivePro enables easy and repeatable database security assessments, capturing results for all database security issues, ranked by risk, and generating comprehensive and customizable reports. Organizations are able to view vulnerabilities affecting compliance regulations, misconfigurations, identity and access controls, as well as issues that lead to privilege escalation.

“Unlike other solutions, AppDetectivePro not only verifies vulnerabilities within the database, but provides a deep configuration assessment,” states Josh Shaul, CTO with Application Security, Inc. “With this new release, we are helping our customers understand the vulnerabilities that are unique to their organization, as well as learn about missing patches and compliance issues, in a simple and cost-effective way.”

Vulnerability Assessment

AppDetectivePro provides a unique vulnerability assessment that allows for both a pen test and audit. Through a pen test scan, AppDetectivePro provides a detailed view of vulnerabilities that could be potentially exploited by an attacker through an “outside-in” view. For a complete security review, AppDetectivePro's audit scan provides a deeper analysis of vulnerabilities and issues that could lead to privilege escalation exploits through an “inside-out” analysis. Audit scans are performed needing only a read-only account on the database.

Configuration Assessment

Beyond vulnerability assessment, AppDetectivePro provides a deep analysis of database configurations. Backed by AppSecInc's SHATTER knowledgebase, the industry's most complete library of database vulnerability and configuration issues, AppDetectivePro provides a detailed view of configuration issues, patch levels, and OS-related database issues. TeamSHATTER's knowledgebase is updated on a regular basis through AppSecInc's ASAP Updates, ensuring that the most recent vulnerabilities can be identified and remediated.

AppDetectivePro's unique policy editor works hand-in-hand with the TeamSHATTER knowledgebase, allowing users to customize controls based on their business needs and report on those controls.

Identity and Access Assessment

According to a recent study by Verizon, research indicates that 48% of data breaches are the result of privilege misuse. AppDetectivePro provides a detailed view of an organization's data ownership, access controls, and rights to sensitive information across all major database platforms. AppSecInc software allows organizations to protect the database, while meeting compliance regulations by resetting user access controls and privileges to only the minimum database access required for employees to do their jobs.

“Organizations can start small to effectively enhance their security infrastructure,” added Shaul. “Having a better understanding of which staff members have high access to system functions, and making sure their passwords are strong, is a great place to start.”

AppDetectivePro 8.0 is generally available and is part of the AppDetectivePro platform. For further information, please contact an AppSecInc sales representative at 1-866-9APPSEC or visit:

About Application Security, Inc.

AppSecInc is a pioneer and leading provider of database security solutions for enterprise of all sizes. By providing easy to deploy and manage, highly scalable software-only solutions – AppDetectivePro for auditors and IT advisors, and DbProtect for the enterprise – AppSecInc helps customers achieve unprecedented levels of data security, while reducing overall risk and helping to ensure continuous regulatory and industry compliance. Used by more than 1,300 active commercial and government customers worldwide, our proven and award-winning enterprise solutions are backed by the world's most comprehensive database security knowledgebase from the company's renowned team of threat researchers, TeamSHATTER.

For more information, please visit: and follow us on Twitter: |

DbProtect and AppDetectivePro are trademarks of Application Security, Inc. All other product names, service marks, and trademarks mentioned herein are trademarks of their respective owners.

Application Security, Inc.
Janel Peterson, 781-687-1023

View Comments and Join the Discussion!