For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

shripad_dhole_1's avatar
shripad_dhole_1
Icon for Nimbostratus rankNimbostratus
Jul 08, 2016
Solved

How to select below Vulnerability scanning tools on basis of application Type.

How to select below Vulnerability scanning tools on basis of various application Types 1) IBM Rational AppScan, 2) Cenzic Hailstorm, and 3) QualysGuard, 4) WhiteHat Sentinel.

 

application delivery
ASM Advanced WAF
security
  • Vijith_182946's avatar
    Vijith_182946
    Jul 12, 2016

    Hi, Just to add on above..this link will help you on building a policy from vulnerability scanner. https://devcentral.f5.com/articles/the-big-ip-application-security-manager-part-2-policy-building.Ui34sLEo7IX

     

3 Replies

  • Tikka_Nagi_1315's avatar
    Tikka_Nagi_1315
    Historic F5 Account
    Jul 11, 2016

    If I understand your question correctly, you don't select the Vulnerability scanning tool based on the application. It is whatever tool you have access to for either scanning or importing a report from. Please read

     

    https://f5.com/resources/white-papers/vulnerability-assessment-with-application-security

     

    • shripad_dhole_1's avatar
      shripad_dhole_1
      Icon for Nimbostratus rankNimbostratus
      Jul 12, 2016

      Thanks Tikka ..Yes, we can use available tools or can upload a report from any other tool. Do we have comparison between these tools for application security.

       

  • Vijith_182946's avatar
    Vijith_182946
    Icon for Cirrostratus rankCirrostratus
    Jul 12, 2016

    Hi, Just to add on above..this link will help you on building a policy from vulnerability scanner. https://devcentral.f5.com/articles/the-big-ip-application-security-manager-part-2-policy-building.Ui34sLEo7IX