AppScan Source reports

AppScan® Source reports help software security analysts, development managers, and risk management auditors measure compliance with software security best practices and regulatory requirements. AppScan Source reports help ensure that your critical applications meet the security standards you set.

AppScan Source uses source code vulnerability analysis results to power a series of reports that provide a detailed picture of compliance to a security, development, or audit professional.

AppScan Source reports feature:

• Report Card: Report card for a brief view of the security state of each major category
• Detailed Audit Review: A detailed audit of non-compliant findings
• Drill Down: Direct access to the non-compliant code for further analysis and prioritization of remediation and assignment

AppScan Source for Analysis generates a variety of AppScan Source reports:

• CWE/SANS Top 25 2011 report
• DISA Application Security and Development STIG V4R4 report
• Open Web Application Security Project (OWASP) Mobile Top 10 report
• Open Web Application Security Project (OWASP) Top 10 2013 and 2017 reports
• Payment Card Industry Data Security Standard (PCI DSS) Version 3.2 report
• Software Security Profile report: Provides an overall view of the security state of an application, across every major vulnerability category.