Team Reviewer provides an effective vulnerability discovery, management & tracking, by continuously identifying threats, monitoring changes in your network, discovering and mapping all your devices and software — including new, unauthorized and forgotten ones —, and reviewing configuration details for each asset.
...
Static Server Plugin for Team Reviewer (to be purchased separately) it is able to run Static Analyses over a Source Code Folder, and Software Composition Analyses directly from Team Reviewer.
You can do:
Static Analyses
Software Composition Analyses
Mark False Positives
Enable/Disable and change Severity of existing Vulnerability Detection Rules
Add Custom Rules
Declare Recurrent False Positives by Evidence
...
You can declare Recurring False Positives by Evidence (authorized users only):
...
SCA Server Plugin
SCA Server Plugin for Team Reviewer (to be purchased separately) is able to run Software Composition Analyses, directly from Team Reviewer.
You can do:
Software Composition Analysis of a Folder, containing 3-party libraries
Software Composition Analysis of a Container
Software Composition Analysis of a GIT Repository
You start a Software Composition Analysis clicking Static Analysis in the main Dashboard:
...
The Software Composition Analysis features are the same of SCA Desktop, but centralized and accessible by any browser:
...
Once the SCA analysis is terminated you can go to Results page:
...
You can drill-down the results:
...
You can view the Software Bill of Materials (SBOM):
...
And you can dowload reports in PDF, Word, Excel and HTML formats:
...
Additionally you can have a custom Cover Letter, with you logo, your ISO 9001 Responsability chain and you DIsclaimer.
Reports
Team Reviewer stores reports generated with:
...
Team Reviewer is based on open source software developed by Aaron Weaver (OWASP Defect Dojo Project)
COPYRIGHT (C) 2014-2022 SECURITY REVIEWER SRL. ALL RIGHTS RESERVED.