CAP consists of:
Results are correlated in the Analyzer platform to provide a comprehensive inventory. All scans and traces are centralized in a CAP server which can be used in SaaS or installed on-premise.
CAP’s lightweight application tracer agent sits inside a running application and records all the calls the app makes to its cryptographic libraries. See https://docs.cryptosense.com/traces/ for more information.
It allows us to give you better insights. Plenty of tools scan filesystems for certificates, but only CAP can also trace inside applications to show you which ones are used, and what they are used for.
Our adaptive mutation-based fuzzing engine explores the corner-cases of the PKCS#11 standard as implemented in the device under test. The results are passed through more than 100 compliance and vulnerability filters to detect anomalies and weaknesses.
CAP has a full GraphQL API allowing easy integration with other tools
No. CAP’s Application Tracer agent sees 100% of calls to crypto libraries in a running application, without needing access to source code.
CAP is a complete cryptography management platform. By combining analysis of cryptography throughout your infrastructure it gives you powerful insight into how you use cryptography with multiple business benefits.download