NTT Security AppSec Solutions Inc. today announced a solution that enables enterprises to conduct dynamic application security testing at each phase of the development cycle and prevent exploitable vulnerabilities from reaching production.

Vantage Prevent, the next phase of the WhiteHat Vantage Platform, is designed to leverage developers’ functional and quality assurance tests to identify exploitable security risks in their web applications and application programming interfaces.

The service allows DevOps engineers, those on combined developer and information technology operations teams, to automate security testing in continuous integration and continuous delivery or CI/CD pipelines within their native environment. At the same time, security teams can assess vulnerabilities reported within minutes of discovery before being deployed into production.

NTT says Vantage Prevent’s technology is poised to reignite DevSecOps — an approach that ensure software development, security and IT operations all share security responsibilities — in modern development and bring a united approach to application security

Key features and functionality include dynamic testing in minutes rather than days through the software development lifecycle, developer-directed DAST that seamlessly integrates dynamic scans with functional and quality assurance testing, and native API testing.

The service is language- and interface-agnostic and can perform tests against any APIs, single-page and multipage web applications regardless of language. DevSecOps teams can also quickly test incrementally or scan an entire application in local developer environments.

“In bringing Vantage Prevent to market, we realized that the biggest issue that has put so many organizations in a reactive state when it comes to application security is that the industry’s traditional solutions are designed specifically for application security teams,” Chris Leffel, chief product officer at NTT Application Security, said in a statement. “Vantage Prevent brings DAST to the developer-level and encourages enterprises to embed dynamic application security into the overall quality testing process.”

Vantage Prevent is the second solution in The WhiteHat Vantage Platform portfolio. Scheduled to be announced later in the first quarter, the final phase of The WhiteHat Vantage Platform launch adapts traditional DAST by simulating production-safe attacks against applications to identify exploitable vulnerabilities in pre- and post-production environments, providing security teams with actionable guidance to quickly safeguard against breaches.

The announcement is the latest development in the WhiteHat suite of products since NTT acquired WhiteHat Security for an undisclosed sum in 2019.

Image: NTT Application Security