DenyAll strengthens its portfolio with the acquisition of VulnIT
September 2012 by Marc Jacob
DenyAll announces the acquisition of VulnIT, a French vendor of IT vulnerability management software, thereby reinforcing its status as an expert in application security, while paving the way to new markets.
DenyAll is an innovative force in the application security market, a competitive sector where average annual growth is estimated at 27% over 2009-2014, according to The 451 Group. The segment for web application testing tools is a dynamic one, due to the explosion in the number of attacks targeting Layer 7 of the OSI model. These tools are used in addition to application security controls, such as DenyAll firewalls, to offer superior protection against the risks of intrusions and data theft.
The acquisition of VulnIT strengthens DenyAll’s product portfolio and reinforces its security expertise, with the aim of:
· Providing a more effective response to the challenge of securing modern applications, which feature the combined risk of vulnerabilities in the network, system and application layers.
· Meeting the needs of all sizes of businesses, government agencies and local authorities using web applications.
· Delivering an innovative "virtual patching" solution for application vulnerabilities through seamless integration.
· Addressing a new customer segment, such as internal auditors.
· Raising the appeal of its solutions to companies specialising in IT security consulting and auditing.
By incorporating the VulnIT technology, DenyAll now offers three new products that can swiftly produce a detailed report of the vulnerabilities in the infrastructure and the necessary corrective measures:
· DenyAll Auditor is a standalone mobile solution that is provided as a bootable USB flash drive, making it ideal for auditors - DenyAll’s new target customer group.
· DenyAll Vulnerability Manager, delivered as a virtual appliance, allows users to program scans within the network and manage vulnerabilities over time.
· DenyAll Edge Tester, the Software-as-a-Service version, enables users to easily test an application’s level of security from outside, such as a hacker would do.
These products are currently being integrated with firewalls from DenyAll, which is intending to offer a cutting-edge virtual patching solution that administrators can use to simply modify the security policy for their Web Application Firewall upon detecting a new vulnerability.
Jean Larroumets, co-founder of consulting firm Fidens, advises: "For several years, we have been successfully using the DenyAll Auditor solution as part of our audit and intrusion testing services. DenyAll’s acquisition of VulnIT serves to future-proof its vulnerability detection range and accelerates the development of solutions tackling application issues. The end result should be superior, dynamic and effective protection for web applications."