Free pen test management and reporting solution supports unlimited users, eliminates data format conflicts to improve efficiency, production
Saltworks, an application security (AppSec) company, announced SaltMiner Community, a new zero-cost pen testing management and reporting solution that offers enterprise results at open-source costs. SaltMiner Community supports unlimited users and results and automatically aggregates results and normalizes data across different tests, testers, and tools. SaltMiner Community is a free version empowering users with the depth of Saltworks’ enterprise solution SaltMiner and outlines a roadmap to AppSec program visibility and management.
CIO INFLUENCE News:Â Infinera Unveils Portfolio of High-performance Coherent Optical Subsystems and Coherent Pluggable Optical Engines
SaltMiner Community simplifies pen testing, improves efficiency and production
Pen testers and developers aggregate, visualize and report on manual assessments using the same interface and engine as SaltMiner to easily:
- Focus on results, not data formatting and conflict resolution.
- Simplify report management, creation, and delivery.
- Improve actionable results, communication and understanding.
- Standardize results so meanings are consistent across tests, testers and tools.
- Increase understanding of risk by applying business context to AppSec data.
CIO INFLUENCE News: Virtru Joins NIST NCCoE Data-Centric Security and Classification Consortium to Advance Data Security Initiatives
“SaltMiner Community is the only pen testing and reporting solution that provides enterprise functionality at open-source costs…nothing,” said Dennis Hurst, co-founder and president of Saltworks. “It’s like Google Docs for pen testers, enabling users to work on the same set of engagement results at o*******. For executives, SaltMiner Community adds business context to AppSec data that increases value and understanding to reduce risk.”
Easily track, report results across different tests, testers and tools
SaltMiner Community allows AppSec professionals to track manual testing results and aggregate them in ways no other freely available solution can match. It standardizes vulnerability definitions across tools so ‘critical’ means the same thing everywhere. It also ensures pen testers follow consistent practices, which reduces time wasted on finding ways to communicate. Easily delivering standardized reporting with automated data normalization is also of value to teams tracking trends that prove compliance.
CIO INFLUENCE News:Â Axiata Digital Labs (ADL) to Collaborate with AWS to Drive Telco Industry TechCo Evolution
[To share your insights with us, please write to sghosh@martechseries.com]
