...
...
We have run Kiuwan against the OWASP Benchmark test cases and here you have the results (compared to open and commercial tools).
Kiuwan is right up there detecting almost 100% of true positives !!
The Benchmark contains thousands of test cases that are fully runnable and exploitable.
It considers 11 different types of vulnerabilities, including several injection types such as XSS, weak encryption or trust boundary. For every type, the test cases have real vulnerabilities (true positives) and fake vulnerabilities (false positives) to challenge the tools.
...
Please, read https://www.kiuwan.com/blog/owasp-benchmark-kiuwan/
Do you want to build and run by yourself the OWASP Benchmark with Kiuwan?
...
automated vulnerability detection tools. The chart below shows the performance of Kiuwan Code Security for the latest version of the OWASP Benchmark, as of November 2019. The results show that Kiuwan (at position K) detected 100% of true positives, correctly identifying all vulnerabilities present in the test application.
For more details about the OWASP Benchmark and Kiuwan Code Security, read our original blog post from 2017, or review our most recent results and run your own test. |
