Deep dive into your app security risk

Back at the end of last year, we introduced the notion of application security risk.

The risk rating, combined with the security flow map, has been designed to help you overview and prioritize where your focus and energy should better be spent, so you can prioritize where your focus and energy should be spent.

Now, you can review in details what made Sqreen think a given application is risky or not, and use these insights to mitigate some of the most critical risks.

We'll iterate a lot on this part in the coming weeks! Your feedback are more than welcome, as, as you’ll help us take this feature in the right direction.

Discover my apps' security risk https://my.sqreen.com/application/goto/application-risk

One token to rule them all

Up until now, deploying Sqreen on many applications was a tedious process. Basically, you needed to manually create the application from your dashboard and use a unique application token.

Meet the organization token! Using organization-based tokens, it's now 100 times easier to deploy Sqreen at scale. Just re-use the same token for all your applications and give them each a unique name.

For now, our Ruby, Node.js, and Go agents support organization tokens. PHP is coming up this week, and Python and Java are coming up next!

Obviously, the application token remains fully supported. When you feel ready to migrate, just fetch the token and update your app's configuration. Also, you can manage multiple tokens, if you want to segment deeper.

Fetch my organization token https://my.sqreen.com/profile/organization/tokens

Protection, revamped

Protecting your applications has been our #1 mission at Sqreen from day 1.

Thanks to your feedback, we managed to iterate a lot on this part, always aiming to increase the coverage and making things clearer and clearer about how and what Sqreen protects.

In our latest improvement, we totally revamped the way you can interact with all the protections Sqreen provides by merging them under high-level, value-oriented Security Modules.

We just released the Runtime Application Self Protection (RASP) module, which includes all the protection against the most critical vulnerabilities that you're already familiar with.

The scope of Sqreen’s protection for your apps should now be much easier to digest and to configure.

Review your apps' protection https://my.sqreen.com/application/goto/modules

A better way to protect your users

Sqreen helps you monitor and protect your users since day 1.

From brute force attacks to credentials stuffing through an unusual volume of signups, we help you detect early on when your users may have been compromised and the attackers.

We revamped our heuristics so it's much faster, more accurate and you can decide to block attackers, like with any Playbooks. On top of that, you can fine-tune the threshold to customise for your context.

If you've already enabled User Monitoring, you have nothing to do. Otherwise, you may consider enabling it now! It takes only a few lines of code using our User SDK.

Start monitoring your users now https://my.sqreen.io/application/goto/settings/global

Let's take a tour?

Sqreen is kind of a unique solution to app security.

There's now a lot going on, and discovering everything at once isn't always easy.

We've put together a nice getting started to help you discover the most important Sqreen benefits:

  • Evaluate your apps' exposure
  • Protect them against the most common threats
  • Protect your users
  • Protect your app's business logic

Whether you're new here (Welcome!) or already a seasoned Sqreen user, we strongly recommend you to take this tour to (re)discover our main features;

Get started

Protect your Java Business Logic

🎉Playbooks are now supported in Java: track custom events using Sqreen SDK and block or redirect attackers, without changing a single line of code.

Update your agent to version 1.1.0 and superior to get started!

Playbooks?

A few months back we released the Playbooks, helping you not only protect your apps against the most common web threats (SQL injection, Cross-site scripting, etc) but also against suspicious activities.

Now, we're providing you with some 20+ built-in playbooks.

Also, you can create your own custom ones, securing custom scenarios tied to your own business logic.

Discover the Playbooks

Stay on top of your infrastructure updates

Are you struggling to keep up with the pace of releases of your application?

Deploying new applications and go fast to market shouldn't be held back by Security. Yet, at the end of the day you're striving to keep your whole infrastructure secure.

Using our brand new Flow Map, you'll be able to overview all your applications at a glance and understand immediately which ones require most of your attention.

Exploring the Risk, you'll then see deeply why and where each app is exposed.

The team is very excited to release those two features under beta before wrapping up the year.

We are looking forward to hearing back your feedback about it!

A brand new layout for the Dependencies

One of Sqreen oldest features was just given a makeover.

The view should be easier for you to browse and features a search bar. We basically applied everything we improved and learned on our Dashboard UX.

Review the status of your apps' dependencies

Discover anomalies from your apps' environment

Since the initial release of Playbooks, we've been focused on helping you monitor suspicious activities from your apps' traffic.

The environment in which your apps are running is also a potential vector of attack.

6 new Playbooks are now live from your account. Discover the runtimes are up-to-date, if the passwords used to connect to your database are strong enough and more.

Of course, they're built with privacy in mind and we'll never collect any sensitive information.

Get started

Get full control over the Sqreen's overhead

Sqreen App Hardening plugins are protecting your application from the most common vulnerabilities - like SQL injections, XSS, etc - in real-time.

Of course, performing extra actions during your app's requests means Sqreen may introduce some few extra milliseconds overhead.

So far, you had to make a hard decision: benefit from all Sqreen protections but potentially adding few extra ms on each request OR disable them.

Brace yourself: you can now get the best of both worlds! 🎉 Ruby version 1.14.0 and Node.js 1.24.0 both support this setting. PHP, Java, and Python are following!

Visit your Dashboard to define how many milliseconds Sqreen may consume and review what % of your traffic we can actively analyze.

No published changelogs yet.

Surely Sqreen will start publishing changelogs very soon.

Check out our other public changelogs: Buffer, Mention, Respond by Buffer, JSFiddle, Olark, Droplr, Piwik Pro, Prott, Ustream, ViralSweep, StartupThreads, Userlike, Unixstickers, Survicate, Envoy, Gmelius, CodeTree