Hdiv Community

Application Security Framework

Hdiv Comunity and Enterprise solutions are long and well tested products, being used by many banks, goverments and large corporations from Fortune 500 rank (and more than 128 countries), in production since 2008. Due to its architecture, all false positives are prevented as it works with realtime whitelist and as it is integrated in the SDLC protects the applications from the very beginning without having to be tested in production servers as others solutions do.

Hdiv goal is to protect the application from within the architecture and without requiring any code change. This approach could be achieved thanks to our integration with many different frameworks and libraries, i.e. we developed a native Spring integration more than 8 years ago and our design was in fact the base for their on anti-CSRF implementation. Many other integrations can be used in Hdiv, such as Struts, JSF, Spring REST, JAX-RS and many others in Java, .NET (MVC, Web Forms, WebAPI), etc.

Choose the right solution for your organization

The table below shows a comparison between the open-source solution (that we are strongly commited with) and the enterprise ready solution. In summary, open-source solution works perfectly in small environments but enterprise solution leverages the community edition protection to completely different level, by providing increase protection, scalability, performance, monitoring and extended framework support.


Hdiv Community
Hdiv Enterprise
  Detection
Detection
  Security Bugs detection (SQL Injection, XSS, Path Traversal and up to 40 more)
Security Bugs detection (SQL Injection, XSS, Path Traversal and up to 40 more)
  Third party vulnerable software detection
Third party vulnerable software detection
  Protection
Protection
  Data Tampering Protection
Data Tampering Protection
  URL Protection
URL Protection
  Security Bugs protection (SQLInjection, XSS, Path Traversal and up to 40 more)
Security Bugs protection (SQLInjection, XSS, Path Traversal and up to 40 more)
  Malicious binary protection
Malicious binary protection
  IP Reputation
IP Reputation
  DoS Protection
DoS Protection
  Brute Force Login protection
Brute Force Login protection
  Sensitive Data Protection & Monitoring
Sensitive Data Protection & Monitoring
  Verification
Verification
  Burp Suite Integration
Burp Suite Integration
  Compliance
Compliance
  PCI DSS
PCI DSS
  GDPR
GDPR Coming soon
  SDLC
SDLC
  Developer Toolbar
Developer Toolbar
  Maven plugin for third party vulnerable software detection
Maven plugin for third party vulnerable software detection
  Jenkins plugin for Security Bugs detection tracking
Jenkins plugin for Security Bugs detection tracking
  Technologies & Support
Technologies & Support
  .NET support
.NET support
  REST and RESTful APIs support
REST and RESTful APIs support
  Supported frameworks
Supported frameworks Only latest release
  Additional frameworks support
Additional frameworks support
  Inmediate bug fix patches
Inmediate bug fix patches
  Support Services
Support Services
(1 year of support & upgrades)
  Deployment Architecture
Deployment Architecture
  Single Server
Single Server
  Clustering
Clustering
  Transparent fault recovery
Transparent fault recovery
  High Scalability
High Scalability
  Stateless architectures
Stateless architectures
  Microservices
Microservices
  Monitoring
Monitoring
  Real-time Administration and Monitoring Web Console
Real-time Administration and Monitoring Web Console
  Sensitive Data Usage Monitoring
Sensitive Data Usage Monitoring
  Alerts (Email, IM, Slack, etc.)
Alerts (Email, IM, Slack, etc.)
  Integrations
Integrations
  Issue Tracker integration (JIRA, Asana, etc.)
Issue Tracker integration (JIRA, Asana, etc.)
  SIEM integration
SIEM integration
 
Download Get a demo Learn more

Resources

VIDEO

Application self-protection is finally here

Watch

VIDEO

Hdiv Protection (RASP) in the Production environment

Watch

CONFERENCE

Protection and Verification of Security Design Flaws

Watch

VIDEO

Hdiv RASP protecting Spring REST APIs

Watch