We use essential cookies to make our site work. With your consent, we may also use non-essential cookies to improve user experience, personalize content, customize advertisements, and analyze website traffic. For these reasons, we may share your site usage data with our social media, advertising, and analytics partners. By clicking ”Accept,” you agree to our website's cookie use as described in our Cookie Policy. You can change your cookie settings at any time by clicking “Preferences.”

TechDogs-"Detectify Redefines Appsec Testing With Intelligent Scan Recommendations"

Cyber Security

Detectify Redefines Appsec Testing With Intelligent Scan Recommendations

Business Wire
Overall Rating

Best-in-class AST player reveals that 9 out of 10 valuable apps are missed by organizations; New capabilities address the challenge of efficiently scaling AppSec testing as the attack surface expands

STOCKHOLM & BOSTON--(BUSINESS WIRE)--Detectify, the advanced application security testing platform for evolving attack surface coverage, today announced the launch of its new Asset Classification and Scan Recommendations capabilities. This innovation directly addresses a critical challenge for security teams: knowing what else, beyond their core applications, requires in-depth testing. The new features automatically classify discovered web assets based on attacker reconnaissance techniques and deliver recommendations on where to run DAST, helping organizations bridge the gap between broad and deep vulnerability testing across their entire attack surface.

Security teams know they must test their main applications, but they often wonder which other assets to cover. Detectify reveals a significant gap in web app testing: on average, organizations miss testing 9 out of 10 of their complex web apps. Alarmingly, over half of organizations miss all their valuable apps when getting started with scanning, reflecting their uncertainty about where to deploy scans. This challenge affects organizations regardless of size; even those with fewer than 10 valuable web apps typically test only about 30% of them, and coverage declines as their attack surface increases, demonstrating a consistent struggle to scale AppSec testing on targets attractive to attackers.

Detectify’s newly announced capabilities address this challenge directly by integrating intelligence into its platform. This enables customers to easily identify and swiftly act on their complex web applications, seeing both the forest, which represents their entire attack surface, and the trees, symbolizing each web app. The new capabilities include:

  • Asset Classification: Analyzes and categorizes all web assets discovered by Detectify, focusing on the presence of specific attributes that can indicate the purpose of each app (e.g., libraries, forms, body length, certain headers). This reflects insights from Detectify's continuous monitoring with an approach that mimics attacker reconnaissance. As new web apps emerge without the security teams' knowledge, this feature enables them to identify and categorize assets for further investigation and testing.
  • Scan Recommendations: Provides intelligent suggestions for web apps to test based on their classification and attractiveness to attackers. It identifies which apps need thorough testing, particularly through deep crawling and fuzzing with DAST, utilizing insights from the Detectify Crowdsource community of ethical hackers and AI-driven assessments from Detectify Alfred.

“It’s time to break the illusion of coverage. Attackers thrive on the discrepancy between what you believe you're exposing and what you're actually exposing," said Rickard Carlson, CEO at Detectify. “The days of blindly deploying DAST and chasing shadows are over. We are helping AppSec teams direct their resources toward protecting the targets that actually matter."

These capabilities enable AppSec teams to allocate resources confidently, shifting focus from manually guessing what to test, to automatically knowing where the highest risks lie. Organizations can now focus deep DAST scanning efforts where they'll have the most impact while maintaining broad dynamic coverage over their complete attack surface. Scan Recommendations and Asset Classification are being rolled out to Detectify customers in the coming weeks. More information here.

About Detectify

Detectify sets a new standard for advanced application security testing, challenging traditional Dynamic Application Security Testing (DAST) by providing evolving coverage of each and every exposed asset across the changing attack surface. AppSec teams trust Detectify to expose how attackers will exploit their Internet-facing applications. The Detectify platform automates continuous real-world, payload-based attacks fuelled by its global community of elite ethical hackers into its own expert-built engines, exposing critical weaknesses before it's too late. Go hack yourself. Visit detectify.com to learn more.


Contacts

Media Contact
Jorge Vicente
​Brand & Communications at Detectify
​+46761146350
press@detectify.com

Frequently Asked Questions

What is Detectify's new Asset Classification feature?

It analyzes and categorizes web assets discovered by Detectify, identifying apps based on attributes like libraries, forms, and headers, mimicking attacker reconnaissance.

How do Scan Recommendations help with AppSec testing?

They suggest which apps need thorough testing (DAST, fuzzing) based on their classification and attractiveness to attackers, prioritizing high-risk targets.

Who benefits from these new capabilities?

AppSec teams in organizations of all sizes benefit by efficiently allocating resources to the most critical vulnerabilities and improving overall security posture.

First published on Fri, Apr 25, 2025

Enjoyed what you've read so far? Great news - there's more to explore!

Stay up to date with the latest news, a vast collection of tech articles including introductory guides, product reviews, trends and more, thought-provoking interviews, hottest AI blogs and entertaining tech memes.

Plus, get access to branded insights such as informative white papers, intriguing case studies, in-depth reports, enlightening videos and exciting events and webinars from industry-leading global brands.

Dive into TechDogs' treasure trove today and Know Your World of technology!

Disclaimer - Reference to any specific product, software or entity does not constitute an endorsement or recommendation by TechDogs nor should any data or content published be relied upon. The views expressed by TechDogs' members and guests are their own and their appearance on our site does not imply an endorsement of them or any entity they represent. Views and opinions expressed by TechDogs' Authors are those of the Authors and do not necessarily reflect the view of TechDogs or any of its officials. While we aim to provide valuable and helpful information, some content on TechDogs' site may not have been thoroughly reviewed for every detail or aspect. We encourage users to verify any information independently where necessary.

Tags:

Application Security Testing AppSec DAST Vulnerability Testing Attack Surface Web Application Security Detectify

Join The Discussion

Trending Business Wire

Join Our Newsletter

Get weekly news, engaging articles, and career tips-all free!

By subscribing to our newsletter, you're cool with our terms and conditions and agree to our Privacy Policy.

Home

Hot Topic: AI

News

Articles

Branded Insights

  • Dark
  • Light