24/7 Monitoring and Web Penetration Testing

ImmuniWeb® Continuous leverages our proprietary Multilayer Application Security Testing and application change detection technologies for ongoing, DevSecOps-enabled web penetration testing. It combines our award-
winning
Machine Learning and AI technology with manual testing of the new or updated code.

ImmuniWeb® Continuous

Continuous Monitoring
Continuous Monitoring

24/7 testing, SANS Top 25 full coverage and business logic testing

Accurate Reporting
Accurate Reporting

Zero false-positives SLA and actionable remediation guidelines

DevSecOps Tailored
DevSecOps Tailored

One-click WAF virtual patching, SDLC & CI/CD tools integration

How It Works
1 Pick a group of
web applications
2 Configure testing & customize reporting
3 Get 24/7 testing
and monitoring

Standards & Methodologies

We leverage in-house application security testing methodologies in combination with:

  • OWASP Testing Guide
  • NIST SP 800-115 Technical Guide to Information Security Testing and Assessment
  • PCI DSS Information Supplement: Penetration Testing Guidance
  • FedRAMP Penetration Test Guidance
  • ISACA’s How to Audit GDPR
NIST SP 800-115 Technical Guide to Information Security Testing and Assessment
PCI DSS Information Supplement: Penetration Testing Guidance
FedRAMP Penetration Test Guidance
OWASP Testing Guide

We follow international standards to report security vulnerabilities:

  • Common Vulnerabilities and Exposures (CVE) Compatible
  • Common Weakness Enumeration (CWE) Compatible
  • Common Vulnerability Scoring System (CVSSv3)
Common Vulnerabilities and Exposures (CVE) Compatible Common Weakness Enumeration (CWE) Compatible Common Vulnerability Scoring System (CVSSv3)

Vulnerability Coverage Datasheet

  • Injection Flaws

  • Any other "High" Risk Vulnerabilities

  • Buffer Overflows

  • Cross-Site Scripting (XSS)

  • Insecure Cryptographic Storage

  • Improper Access Control

  • Insecure Communications

  • Cross-Site Request Forgery (CSRF)

  • Improper Error Handling

  • Broken Authentication and Session Management

DevSecOps Integration

Developers Environment

Jira DevSecOps Integration HP DevSecOps Integration Bugzilla DevSecOps Integration Splunk DevSecOps Integration Mantis DevSecOps Integration Defectdojo DevSecOps Integration

Web Application Firewalls

ImmuniWeb® Continuous Packages

$2,299per month all included
1 24/7 Testing
  • Suits to test several domains / URLs
  • Rapid detection of new/updated code
  • Multilayer Application Security Testing:
    • Threat-aware testing scenarios
    • Up to 2,5 days of penetration testing
    • AI to reduce human testing and analysis
    • Machine Learning to accelerate testing
    • REST/SOAP API testing
    • Authenticated testing
    • 2FA & SSO support
  • Full customization of testing
2 Reporting
  • Zero False-Positives SLA
  • Threat-Aware Risk Scoring
  • Tailored Remediation Guidelines
  • Web Interface, PDF and XML Formats
  • PCI DSS and GDPR compliances
  • CVE, CWE and CVSSv3 scores
3 Remediation
  • 24/7 Access to Our Security Analysts
  • Instant Vulnerability Alerts (SMS, Email, Phone)
  • Integration With SDLC & CI/CD Tools
  • One-Click Virtual Patching via WAF
  • Unlimited Patch Verifications
  • Multirole Dashboard
$1,199per month all included
1 24/7 Testing
  • Suits to test several domains / URLs
  • Rapid detection of new/updated code
  • Multilayer Application Security Testing:
    • Threat-aware testing scenarios
    • Up to 1 day of penetration testing
    • AI to reduce human testing and analysis
    • Machine Learning to accelerate testing
    • REST/SOAP API testing
    • Authenticated testing
    • 2FA & SSO support
  • Full customization of testing
2 Reporting
  • Zero False-Positives SLA
  • Threat-Aware Risk Scoring
  • Tailored Remediation Guidelines
  • Web Interface, PDF and XML Formats
  • PCI DSS and GDPR compliances
  • CVE, CWE and CVSSv3 scores
3 Remediation
  • 24/7 Access to Our Security Analysts
  • Instant Vulnerability Alerts (SMS, Email, Phone)
  • Integration With SDLC & CI/CD Tools
  • One-Click Virtual Patching via WAF
  • Unlimited Patch Verifications
  • Multirole Dashboard
$5,199per month all included
1 24/7 Testing
  • Suits to test several domains / URLs
  • Rapid detection of new/updated code
  • Multilayer Application Security Testing:
    • Threat-aware testing scenarios
    • Up to 5 days of penetration testing
    • AI to reduce human testing and analysis
    • Machine Learning to accelerate testing
    • REST/SOAP API testing
    • Authenticated testing
    • 2FA & SSO support
  • Full customization of testing
2 Reporting
  • Zero False-Positives SLA
  • Threat-Aware Risk Scoring
  • Tailored Remediation Guidelines
  • Web Interface, PDF and XML Formats
  • PCI DSS and GDPR compliances
  • CVE, CWE and CVSSv3 scores
3 Remediation
  • 24/7 Access to Our Security Analysts
  • Instant Vulnerability Alerts (SMS, Email, Phone)
  • Integration With SDLC & CI/CD Tools
  • One-Click Virtual Patching via WAF
  • Unlimited Patch Verifications
  • Multirole Dashboard
$8,699per month all included
1 24/7 Testing
  • Suits to test several domains / URLs
  • Rapid detection of new/updated code
  • Multilayer Application Security Testing:
    • Threat-aware testing scenarios
    • Up to 10 days of penetration testing
    • AI to reduce human testing and analysis
    • Machine Learning to accelerate testing
    • REST/SOAP API testing
    • Authenticated testing
    • 2FA & SSO support
  • Full customization of testing
2 Reporting
  • Zero False-Positives SLA
  • Threat-Aware Risk Scoring
  • Tailored Remediation Guidelines
  • Web Interface, PDF and XML Formats
  • PCI DSS and GDPR compliances
  • CVE, CWE and CVSSv3 scores
3 Remediation
  • 24/7 Access to Our Security Analysts
  • Instant Vulnerability Alerts (SMS, Email, Phone)
  • Integration With SDLC & CI/CD Tools
  • One-Click Virtual Patching via WAF
  • Unlimited Patch Verifications
  • Multirole Dashboard
Not sure which package is right for you?
Try Package Selector or Contact Sales
?
The packages provide an increasing volume of manual penetration testing and vulnerability scanning resources tailored for various application sizes and complexity.
Any questions? Contact Sales

Testimonials and Customer References

Crédit Agricole next bank (Suisse) SA
eBay Classifieds Group
Banca dello Stato del Cantone Ticino
Haymarket Media, Inc.
Swissquote Bank SA
University Hospitals of Geneva (HUG)
Celgene
UNIRISC GROUP
SIX Group Services AG
International Telecommunication Union (ITU)
UN
Manor AG
SIM University
Arab Bank (Switzerland) Ltd.
Legal Vision
iPresent
Gartner Peer Insights
Quick Start
Products
Free Trial
Newsletter