Introduction to CheckScan+ Managed Vulnerability Scanning
CheckScan+ is a new Managed Vulnerability Scanning Service from CommSec. CheckScan+ combines industry leading application / infrastructure scanning technology and security expertise from our consultants. This hybrid service is designed for those who seek the assurance that consultant guided testing can provide.
CheckScan+ has a sophisticated vulnerability scanning engine designed and maintained by security experts. It supports all forms of authentication via a scriptable browser interface.
CheckScan+ is fully supported throughout the vulnerability scanning engagement, from scoping and configuring your scans, to helping you understand and analyse your results.
The service gives you access to technical support that is provided by our Security Analysts. We are available to explain the results in greater depth, remove false positives and provide remediation advice once initial testing is complete.
GoScript is a simple scripting language that defines application workflows, so that the scanner can interact with your application, allowing for complex workflow testing. It can also be implemented to complete multi-stage authentication.
Support to create basic GoScripts for your application is included in the service. More complex scripts may need to be developed separately by one of our consultants.