Testing Cryptographic Security in your Applications
Cryptosense provides state-of-the-art analysis software to help some of the world’s largest organizations eliminate the vulnerabilities caused by crypto misuse in their applications and infrastructure.
Detect and correct flaws due to crypto misuse in your applications
Cryptosense Analyzer gives you an extensive inventory of the crypto used in your application and identifies vulnerabilities resulting from it. It then gives remediations to fix these flaws.
Find key-management flaws, password-storage errors, weak algorithms/short keys, randomness issues, poor nonce management, vulnerable composition of operations, and more.
Cryptosense Analyzer can help you master crypto risk in your Java, PKCS#11 and OpenSSL applications.
How it works
Cryptosense traces crypto operations on the network and in application calls to crypto libraries, without needing access to source code.
Traces are run through our security analysis algorithms derived from the latest academic results and Cryptosense’s own vulnerability research.
Results include links to stacktraces for fast debugging and compliance analysis to ENISA, NIST, PCI-DSS or a custom crypto policy.
Discover External Facing Crypto Vulnerabilities
Our Discovery tool assesses the configuration of common network services that use cryptography. Includes coverage for TLS, SSH, STARTTLS. Try it for any domain or IP address for free.
How will your servers measure up?