Sparrow Introduces Newly Updated Sparrow Cloud and Sparrow SCA at Black Hat USA 2022

Black Hat USA 2022, the leading information security event, is taking place from August 6 to 11 virtually and in-person at Mandalay Bay Convention Center, Las Vegas, Nevada.Sparrow, a global application security testing leader, has participated in the Black Hat conference since 2018 and introduced its new solutions and features at the events. This year, Sparrow is announcing its newly upgraded Sparrow Cloud and open-source management solution, Sparrow SCA. Sparrow Cloud is a single platform for managing security and quality issues of both source code and web applications: running static and dynamic tests, checking test results, marking vulnerability status, and generating reports.Since its introduction in 2018 as a cloud-based static application security testing service, Sparrow Cloud has been evolving continuously. Sparrow Cloud added dynamic analysis in 2019 and an integrated service that combined static and dynamic analysis in 2020 and is now introducing its open source management service.Although this open-source management SaaS service will not be available until the beginning of 2023, visitors can experience the solution at the event beforehand.Sparrow SCA will analyze source code and binary files for open source license information and security vulnerabilities and generate detailed results into reports and SBOM (Software Bill of Materials) in global standard formats: SPDX, CycloneDX, and SWID Tags.Sparrow Cloud SAST supports 16 languages including ABAP, ASP(.NET), C#, HTML, Java, JSP, JavaScript, Objective-C, PHP, Properties, Python, SQL, Swift, VB.Net, VBS, and XML. When users start the static analysis on Sparrow Cloud, it will naturally identify the languages of the code, and use checkers fit for the language.Sparrow Cloud DAST tests running applications and identifying security vulnerabilities in them. Sparrow Cloud DAST enables users to run tests from AJAX to web elements by using dynamic methods HTTP. Sparrow Cloud can scan JavaScript applications by replaying browser events as well.Sparrow Cloud was also launched in AWS Marketplace last March and enabled users to quickly identify, analyze, and remediate their applications, including software and web applications for security vulnerabilities without any hardware or other installation.

2022.08.02

Sparrow Cloud Launches in AWS Marketplace

NEW YORK, May 12, 2022 /PRNewswire/ -- Sparrow Co, Ltd, a global application security testing leader, has announced the launch of its cloud-based application security testing services in the AWS Marketplace, a digital catalog with thousands of software listings from independent software vendors that make it easy to find, test, buy, and deploy software that runs on Amazon Web Services (AWS).Sparrow Cloud, a static and dynamic application security testing service that offers comprehensive coverage of major programming languages and global compliance standards, including OWASP and CWE, is now available in AWS Marketplace.By launching the service in AWS Marketplace, Sparrow enables its users to quickly identify, analyze, and remediate their applications, including software and web applications for security vulnerabilities without any hardware or other installation.Considering the high adoption cost of the on-premise application security testing solution, this software-as-a-service (SaaS) can help many smaller businesses or companies with a limited budget or no constant need for solution.Sparrow also offers the application security ecosystem that includes Sparrow SAST/SAQT, intelligent static application security, and quality testing tool, Sparrow DAST, a powerful dynamic application security testing tool with TrueScan (IAST module), Sparrow RASP, a web application self-protection tool, Sparrow SCA, open-source license identification and security vulnerability management tool, and Sparrow InteractiveHUB, a web application interaction and management platform. These solutions are designed to help companies to implement DevSecOps, enabling them to continuously monitor and improve the security of their applications and development throughout their software development life cycle (SDLC).To effectively enhance application security in the face of increasing cyber threats, it is critical to apply both static and dynamic analysis to the software development life cycle. With Sparrow Cloud, users can run both analyses on a single platform. With its powerful analysis capability and intuitive user interaction (UI) with detailed descriptions of detected vulnerabilities, even developers who are not familiar with security testing tools can easily manage security vulnerabilities.About Sparrow Co, LtdFor more information, visit www.sparrowfasoo.com or visit Sparrow booth at BlackHat USA 2022 or Japan IT Week 2022.SOURCE Sparrow Co., Ltd.

2022.05.12

Sparrow introduces Sparrow Cloud, the new application security & quality testing as a service at "Black Hat USA 2021"

Sparrow Co., Ltd, the leader in application security testing, announced on July 29 its participation in "Black Hat USA 2021." Sparrow hosts its virtual booth to introduce its new solutions between August 4 and 5.This year, Black Hat, one of the world's largest IT security events, is holding its 24th conference from July 31 to August 5 as a hybrid event due to the COVID-19 pandemic. Attendants may participate in this event free of charge with pre-registration and experience a variety of solutions from global security companies, including Sparrow.This year, with its new slogan, "Simplify Application Security with Sparrow", Sparrow will introduce two security solutions: 'Sparrow Cloud' and 'Sparrow SCA'. 'Sparrow Cloud' is application security as a service that contains the core of Sparrow's market-leading solutions, Sparrow SAST/SAQT and Sparrow DAST. This cloud-based service helps users to diagnose application security and quality by performing static and dynamic analysis anytime and anywhere at minimum cost.To effectively enhance application security in the face of increasing cyber threats, it is critical to apply both static and dynamic analysis to the software development life cycle. With Sparrow Cloud, users can run both analyses on a single platform. Its powerful analysis capability and intuitive UI with detailed descriptions of detected vulnerabilities, even developers who are not familiar with security testing tools can easily manage security vulnerabilities.Sparrow will introduce its open-source management solution, Sparrow SCA, as well. Sparrow SCA automatically identifies open-source software in use and detects security vulnerabilities in the source code and binary.Ilsoo Chang, Sparrow's CEO stated "As President Biden stipulates detailed regulation for strengthening security, it is important to prove that the application is developed in a secure environment. Sparrow, with its security solutions, can help companies to proactively respond to cyber threats".

2021.07.30