Is the software to be purchased for your own company secure? Is the work of the external software developer error-free? Is the app you developed yourself really secure? VUSC - the Code Scanner by Fraunhofer SIT answers these questions quickly. The file to be examined is simply loaded into the scanner by drag and drop, and a few minutes later VUSC displays the result of the security check. The Fraunhofer SIT scanner does not need the source code for this, nor must the software to be checked be sent to external servers.
Finding and assessing vulnerabilities
VUSC finds security vulnerabilities and provides a generally intelligible description of the problem for each vulnerability. In addition, VUSC automatically classifies the vulnerabilities. This allows users to see at a glance whether the vulnerability found represents a high, medium or low risk. This clear prioritization allows VUSC users to fix the most serious issues first. In addition, VUSC provides a wealth of detailed information on the vulnerabilities found: What data is affected? Where is the data being sent to? What type of encryption does the tested software use? This gives VUSC users an overview of specific risk factors. If necessary, Fraunhofer SIT also adapts the scanner to company-specific security requirements.