NSTU NATI students use Solar solution to identify software vulnerabilities

2024: Using Solar appScreener

The solution for comprehensive security control ON from the group of companies "" is Solar Solar appScreener used as part of student training. Novosibirsk State Technical University NETI (NSTU NETI) Now information security students are learning to identify typical vulnerabilities and hidden capabilities in applications in practice. Solar announced this on June 4, 2024.

Solar appScreener is applied under the discipline "Methodology for the secure development and operation of software" to audit code written by students at laboratory workshops to identify vulnerabilities in specially designed malware, as well as in various open source applications. Attackers are attacked by most repositories with open libraries and open source components. The software code compliance audit during the software development phase helps students identify and prevent potential consequences associated with the use of vulnerable components.

Among the advantages of Solar appScreen, students and teachers note the user-friendly scanner interface, which combines four types of analysis - statistical (SAST), dynamic (DAST), software composition analysis (SCA) and supply chain analysis (SCS). This allows you to use Solar appScreener to fully monitor application security without the need to implement various separate tools for code analysis.

To effectively detect and eliminate vulnerabilities in software, it is vital to have tools that not only automate code validation, but are able to identify relationships between results based on various types of analysis. Solar appScreener has a number of key advantages important to our learning process. In particular, the scanner supports 36 programming languages. This helps to provide students with a comprehensive understanding of existing vulnerabilities and methods of eliminating them, - said Igor Ognev, lecturer at the Information Protection Department of NSTU NETI, engineer of the Information Technical Protection Department of NSTU NETI.

Solar, as an architect of integrated security, is ready to help technical universities integrate secure development practices into the educational process. Teaching IT and information security students the principles and methods of building secure software helps not only develop skills to detect vulnerabilities and prevent cyber attacks, but also forms industry-level security standards. In addition, practical skills contribute to increasing the competitiveness of young specialists in the labor market, "explained Anton Prokofiev, an expert on security control at Solar appScreen software of Solar Group.