S4 is a SaaS security scanner for Salesforce. It rapidly identifying threats and vulnerabilities in Salesforce environments, and provides remediation recommendations.
S4 Vulnerability coverage:
How it works
1. S4 Reviews Environment Configuration
S4 reviews the configurations of your Salesforce org and identifies flaws
2. S4 Scans Source Code
S4 uses a robust client-side static code analysis engine to create call flows to identify CRUD/FLS flaws. It then uses data flow analysis to associate VisualForce components to their associated controllers.
3. S4 Generates a Custom Fuzzer
S4 uses white-box fuzzing to rapidly identify injection flaws within Force.com code. All vulnerabilities identified during run time testing contain Proof of Concept (PoC) exploits, ensuring no false positives.
4. S4 Produces an Application Security Report
S4 produces a comprehensive security report containing the specific threats and vulnerabilities to your Salesforce instance, the severity of its findings, and remediation solutions.
S4 product demo
What customers are saying:
Still have questions?
Feel free to contact us anytime.