Stack Overflow
Stack Overflow

Questions tagged [bluemix-app-scan]

IBM Security AppScan enhances web application security and mobile application security, improves application security program management and strengthens regulatory compliance.

HCL AppScan on Cloud is a service by IBM for application security scan. It replaces earlier Application Security on Cloud by Bluemix and Appscan Dynamic Analyzer and also includes Mobile analyzer.

39 questions
0
votes
2 answers

IBM AppScan Security PathTraversal issue in File.Copy method in VB.Net

I ran IBM AppScan tool on a VB.Net source.I am getting one security issue in File.Copy method under Path Traversal category. Issue Detail - Vulnerability Type - PathTraversal This API accepts a directory, a filename, or both. If user supplied data…
Deepak
  • 1
  • 2
0
votes
2 answers

What all does AppScan scan with JavaScript?

I can't find any good documentation that lists what all IBM's AppScan Source scans for JavaScript projects. I've looked through many of their PDFs and websites but haven't found anything that details what it covers and reviews. What does AppScan…
whatsTheDiff
  • 658
  • 2
  • 7
  • 19
0
votes
1 answer

IBM Security Appscan returns MongoDB NoSQL Injection on SignalR connection

I have created a signalR site that displays collected server data from our intranet. Everything works accordingly without issue. There are no user inputs on the page. It's essentially a dashboard. I have googled, searched IBM's site directly and…
Frank M
  • 1,379
  • 9
  • 18
0
votes
2 answers

How to get the Application Security ID for a IBM Bluemix android app from the dashboard in the latest version?

I wanted to build one android app on IBM Bluemix platform and application security key is needed to run this application. I added the app security service also. But I am not able to find the appsecretId in the place mentioned in the tutorials or…
Sourav Mandal
  • 23
  • 3
0
votes
1 answer

IBM Bluemix Application Security on Cloud Service

I'm wanting to test out IBM's Application Security on Cloud for Bluemix on a dynamic web app. The issue I'm having is that after I declare that a login is required, the only fields to fill in are username & password with the option of a third…
Andre
  • 49
  • 1
  • 5
0
votes
0 answers

How do I pull appscan source filter parameters from the database

Using the IBM AppScan SDK I can open an assessment and apply a filter to create a new assessment. What I would like to do is produce a report that shows the assessment had x findings to start with and after a filter was applied, it now has y…
RMC
  • 1
  • 1
0
votes
1 answer

Bluemix: Can I scan a Java ReST API using Application Security on Cloud

I am planning to use Bluemix for a ReST API development using Java. I wanted to use Application Security on Cloud for scanning the application to eliminate security concern. Can I use it? Is there something more appropriate?
Kangkan
  • 15,267
  • 10
  • 70
  • 113
-1
votes
1 answer

Permanent Cookie Contains Sensitive Session Information Laravel using Appscan security tool

I have scan the Laravel Project using AppScan tool, I am facing security issue Permanent Cookie Contains Sensitive Session Information issue in AppScan Security Document. Here is My Network information of Header: Cache-Control: no-cache,…
Raheel Aslam
  • 444
  • 1
  • 9
  • 28
-4
votes
2 answers

How to make jQuery secure from XSS?

I have a website that uses jquery and bootstrap. Now when i run it through a scanning application, a bunch of issues show up including the use of append(), html() and write() and pointing to XSS attacks. These issues are found in bootstrap and…
Maaz Mikail
  • 25
  • 4
1 2
3