Automated cryptographic security auditing for applications

Overall rating

5 /5
Value for Money
Ease of Use
Customer Support

recommended this app

Filter by

Overall rating
Company size
Time used

1 Reviews

Krzysztof F.
Overall rating
  • Industry: Information Technology & Services
  • Company size: 1 001-5 000 Employees
  • Used for Free Trial
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 8.0 /10

Cryptosense scanning

Reviewed on 2018/08/08

We have used the Cryptosense analyzer to assess the strength of our cryptography which we use in the product


- Very accurate findings
- The recommendations are straightforward and cannot be misinterpreted. In some cases they are very useful to evaluate the real impact on the software
- This type of scanning allows to catch all types of cryptography calls in JVM, not only the one that originate directly from the application, but also that are triggered indirectly by a middleware
- Low ration of false positives


- The size of the traces for products that do a lot of cryptography calls can be problematic, it can be too big for producing the report (this was however quickly resolved by excellent support)
- There was no direct support for Cloud vendors solutions around key management (e.g. AWS KMS), however some of the Cloud services uses standard Java Cryptography API and hence we would able to identified some findings and the Cryptosense team is working to add this type of support