• Company
  • About US
  • NEWS
  • Development
  • Contact US
  • Sitemap
• Partners
  • Become A Partner
  • Reseller/Distributor
  • Links
• Solution
• Download
• Services
  • Professional Security Services
  • WEB Security Services
• Products
  • DAS-DBAuditor
  • DAS-WEBMonitor
  • DAS-LOGAuditor
  • DAS-WEBSCAN(MatriXay 3.0)
  • DAS-DBSCAN
  • DAS-WAF
• Home

Product Overview:

Web Application Vulnerabilities Scanner（MatriXay 3.0）is developed by DBAPPSecurity security experts and based on in-depth analysis of typical security vulnerabilities as well as popular attack techniques in B/S structure application system.

MatriXay 1.0 was first released on the BlackHat Security Conference and Def-Con in August 2006; then in December 2007 , version 2.0 released and play an important role in Web security protection of Olympic Games 2008. Released in 2009, MatriXay 3.0 not only has the remarkable scanning ability，but also provides a powerful penetration testing and web Trojan detection. Therefore it is appraised as “The Best Web Security Evaluation Tool”.

MatriXay aims to reduce the risk of Web Application, which means to protect national interest, social interest, and the interest of enterprises and even individuals. It is widely used in website such as “Government, Telecom Operator, Financial, Securities, Pubic security, Education, Tax, Electricity, and E-business etc.”  and their inside B/S System（Such as OSS System, ERP System, OA System etc）.

Features:

• In-depth Scan: risk-oriented in-depth scanning on web application can access to back-end database information and web application list.
• Web Vulnerability Detection: detect all kinds of typical web vulnerabilities deeply (such as SQL injection, Xpath injection, XSS, the form around, form weak password, all kinds of CGL vulnerabilities.)
• Web Trojan Detection: analyze a variety of linked Trojan automatically, effectively and intellectually; make an accurate analysis to the spreading Trojan virus type; make the position for web Trojan host.
• Penetration Testing: make deep analysis to the target web application and implement sound attack to obtain direct evidence of system security threats by imitating the vulnerability discovery techniques and attack methods of the hacker to current vulnerability.
• DB Audit: By fully simulating hijack attack through current weakness, to realize database Audit function，to obtain configuration information such as background database connection information, database name, database version, Data Dictionary etc.

Benefits

• Complete, in-depth and accurate assessment of web application vulnerabilities can effectively enhance the active defense capabilities.
• Flexible and defined scanning working pattern
• Deep and intellectual Scan Engine
• Unique "evidence" model to ensure accurate and reliable results of the assessment
• Baseline audit of more than 10 kinds of database
• Complete risk assessment report
• Risk assessment report can support all kinds of file formats and can fully customize the content
• No third-party software support for installation and operation
  

CONTACT US >>