Security / DevSecOps

“DevOps practices encourage automation to achieve scale, but security has traditionally been manual, process-heavy and gate-driven — the antithesis of automation, transparency and speed”

- Gartner

While traditional testing methods are based on simulated or scripted discrete requests and responses , ReGrade’s unique holistic approach identifies “zero-day” defects or previously unknown, uncategorized defects and bugs. ReGrade is a unique solution that can find zero-day vulnerabilities both before software code is released and after it is running.

ReGrade can detect zero-day vulnerabilities by previewing what a new version will look like against the prior version with production traffic (predictive approach).  The product sees deviations in responses from the new version that could indicate a new vulnerability was introduced in the coding of that version.  This is a unique feature to Curtail and can obviate the need for certain bug bounty types of programs.

Similarly, ReGrade can also help verify patches for vulnerabilities by comparing the patched and unpatched versions.

Finally, ReGrade can find zero-day vulnerabilities after release by comparing the just released version to the prior version.

In addition, Curtail’s solution ReCover can find zero-day attacks on software.  When an attack is found, ReCover can automatically divert traffic to clean, resilient systems to quickly, safely and reliably maintain business operations at all times.

ReCover

Curtail ReCover proactively detects anomalies, including zero-day attacks, and automatically diverts traffic to clean, resilient systems to quickly, safely and reliably maintain business operations at all times.