Runtime application self-protection (RASP) tools are used to provide continuous attack protection and detection. A RASP tool is integrated with, or built within, an application’s runtime environment. RASP solutions are capable of controlling the application's runtime execution to analyze performance and behavior. Companies use RASP tools to add a level of self-protection to applications in addition to other application security technologies such as web application firewalls. These tools perform a specific security task, but often work in tandem with other security and application monitoring technologies.
To qualify for inclusion in the Runtime Application Self-Protection (RASP) category, a product must:
Sqreen is an application security platform that provides extensive visibility and reaction capabilities to the threats targeting both legacy and modern cloud applications. Trusted by security teams, loved by developers, Sqreen improves the security standards of the world's leading organizations. Founded by former security experts at Apple, Sqreen protects hundreds of companies from startups to Fortune 500 companies. Sqreen uses a combination of technologies including a Runtime Application Self-Protection (RASP) agent to offer deep real-time visibility and protection against security activities and attacks. It offers out-of-the-box security rules against common attacks (OWASP top 10 and more), 0-days and advanced business logic threats. Protections can be easily extendable with custom rules. Get started with Sqreen in just a couple of minutes. No configuration or maintenance required. Benefits of using Sqreen: - Real-time protection without false positives - Deep visibility into security activities: origin, payloads, location, stack traces, time, actors etc. - Protection against common attacks and advanced 0-day attacks - Advanced customization capabilities to cover specific business logic threats - Scalable and integrated into DevOps environments
IMMUNIO is a Runtime Application Self-Protection (RASP) solution that supports multiple frameworks such as Scala, PHP, Python, Ruby, Node.JS, and Java. After a 2 minute installation, IMMUNIO is equipped to detect and block threats to web applications as they occur in realtime - mitigating account takeover attacks and attempts to exploit vulnerable code. In addition to stopping attacks, IMMUNIO makes detailed records of suspicious and malicious activity, suspicious IP addresses, attacks and payloads, application vulnerabilities, and more - allowing security teams unparalleled threat intelligence.