Customer Story

Israel E-government - Gov.IL

The Israel E-government Only Releases Applications to Production After they pass a NexPloit compliance test

The Challenge

Gov.il is on of the “Top 5 most attacked targets” on a daily basis in the world which is why our AppSec standards are the highest possible.

Our AppSec team in Gov.il must perform PT for all the websites before they are launched and on every new released version. This means tests must be performed several times per week based on newly released versions, which is impossible to do manually.

We needed a solution that can cover scanning all our websites, thoroughly, automatically, and without false-positives (which require additional manual validation).

It is important for us that the solution will be easy to use, can both crawl dynamic web-app and scan APIs directly, can integrate to CI/CD proccesses and will be constanly updated to find the latest vulnerabilities.

The Solution

NexPloit provided us exactly what we needed, and more. In the test we performed with NexPloit we found the highest coverage for our applications, both in terms of discovering the application attack surface and findings.

In addition, NeuraLegion was very quick in providing support and adapting the product to our particular needs. The simplicity of usage and full automation allowed us to truly start moving our AppSec testing closer to the development as we are implementing the “Shift left” in our AppSec.

Impact on the business

The ROI with NexPloit is very high. With NexPloit we get a full-featured application security testing fo every new version w release for a fraction of the price that manual PenTests used to cost us.

Israel E-government - Gov.IL

The Gov.il unit is in charge of hosting all the governmental websites in Israel, as well as their security. Needless to say, the security standards that are needed are the highest as government websites deal with the most sensitive user data there is.

Location

Israel

Industry

Government

More Case Studies