zScan helps mobile app developers identify reputation and financial risks by automatically identifying privacy, security and compliance risks in the development process before apps are released to the public. While traditional code analysis tools assess the quality of a developer’s code overall, zScan’s binary analysis identifies risks an attacker could exploit in the app. Zimperium’s zScan:
“With zScan, we are detecting security vulnerabilities before release – in hours rather than weeks – and then automatically provide our third party developer with a list of fixes.”
zScan integrates directly into your development process without requiring your developers to change processes, implement any new code, or have to log into a separate system console. Once findings are discovered, zScan opens tickets in ticketing systems (like JIRA, Cloudbees Jenkins and TeamCity) to provide developers with detailed information and work packages necessary to address the risk. Once fixed, the information is synced back to zScan so security and compliance teams can verify it.
Additionally, zScan’s “Build Compare” capability quickly shows whether risks are trending up or down in each subsequent version. The version comparisons enable organizations to measure compliance progress and to deliver more resilient mobile apps.
Zimperium’s zScan helps organizations overcome challenges and consistently produce mobile apps with fewer privacy, security and compliance risks by: