Contrast Security - Self-Protecting Software
With Contrast your applications automatically detect and fix vulnerabilities, identify attacks, and defend themselves.
Contrast Enterprise is the only product that can defend an application portfolio throughout the entire software lifecycle. Contrast protects applications from attacks, helps development teams eliminate vulnerabilities and provides visibility to unlock threat intelligence. No code changes or security experts are required to keep applications secure.
How it works
Contrast Enterprise agents use patented deep security instrumentation to deploy sensors that identify vulnerabilities and block attacks with pinpoint accuracy from within applications. Contrast delivers unprecedented visibility and protection of custom code, libraries, frameworks, configuration files, and runtime data flow.
Key Features
Get started with Contrast Enterprise in minutes. Simply add the Contrast agent to any application server and it starts working within minutes. The agent reports to the Contrast TeamServer, available either as a cloud service or deployed on-premise.
- Attack Protection - Deploy out-of-the-box CVE Shields to immediately protect vulnerable libraries, and Protection Rules to block entire attack categories, like SQL injection, all in real-time with virtually no false positives
- Real-time Vulnerability Detection & Expert Guidance - Contrast Enterprise monitors Java and .NET code execution, data flow, configurations and more, to quickly find dangerous vulnerabilities with virtually no false positives. Code level pinpointing eliminates guesswork, while context sensitive guidance enables quick remediation.
- Attack Visibility - Contrast Enterprise patented deep security instrumentation enables application reporting where none existed before. Contrast Enterprise identifies and logs all attack events for integration with third party log management and SIEM solutions. Additionally, users can define custom logging parameters for deeper insight and analytics.
- Software Supply Chain Analysis - As much as 80% of application code comes from open source and thirdparty libraries. Contrast Enterprise automatically discovers third-party libraries, alerts to the known (and unknown) risks they may bring with them, and provides critical versioning and usage information that helps remediate risks.
- Portfolio-class Scalability - Contrast Enterprise transparently automates application security to support application portfolios of virtually any size. New applications are discovered automatically as they are run. Executive level portfolio dashboards display the entire portfolio security posture in realtime.
- Agile Speed and Seamless Automation - Continuous integration and deployment require fast and continuous security. Scriptable silent installers, automated updates, and a REST API enable Contrast to deliver security as fast as applications change
- SaaS or On-site Deployment - It takes minutes to go from zero to resolving application security issues using the Contrast SaaS service. Contrast Enterprise may also easily be hosted and administered on-site, enabling a completely administered private service
- Non-intrusive Agent - Contrast Enterprise uses modern agent technology that instruments without impacting production application performance. Instrumentation is done at runtime, so no code changes are required. Agents integrate transparently into the build process to not disrupt application development or deployment.