Blacklock

Blacklock is an On-Demand Security Testing Service provided by Blacklock Security Ltd. According to the vendor, it is designed to assist organizations of various sizes in identifying and addressing security vulnerabilities in their web applications and infrastructure. Blacklock is reportedly used by IT security professionals, DevOps engineers, software developers, system administrators, and e-commerce companies to enhance the security of their digital assets.

Key Features

Single Platform Delivery: According to the vendor, Blacklock offers a consolidated dashboard to manage information assets, security risks, and reports. It provides real-time information on the overall security posture, preventing important information from being lost in inboxes, shared drives, or individual hard disks.

Introduce Continuous Security to DevOps: The vendor claims that Blacklock enables the automation of security testing (DAST) from the CI/CD pipeline through easy API integration. It allows users to create JIRA tickets and assign them to developers for vulnerability remediation, facilitating the early detection and resolution of security issues in the development process.

Industry-Compliant Testing & Reporting: The vendor states that Blacklock generates reports in line with OWASP reporting standards. These reports include comprehensive vulnerability descriptions, impacts, details, recommendations, and references, providing users with clear and actionable findings.

Include Your Team Members: According to the vendor, Blacklock allows for collaboration among techies, developers, managers, and architects to manage and remediate risks. Users can update the status of each vulnerability individually, facilitating progress tracking in the remediation plan.

On-Demand or Scheduled Automated Vulnerability Scanning: The vendor claims that Blacklock offers the flexibility to initiate a security testing at any time with a single click. It combines process automation, automated vulnerability scanning, and manual testing techniques to ensure that users stay updated on newly discovered vulnerabilities and compliance standards.

Customer Onboarding: According to the vendor, Blacklock offers a choice between a one-time annual or continuous security testing. The platform reportedly provides a quick and cost-effective onboarding process through a monthly or annual subscription model. Users can enter their target details, select a test frequency, and begin the scan.

AI-Powered Scan Engine Coupled With Manual Security Testing: The vendor states that Blacklock utilizes a scan engine that rapidly and accurately identifies vulnerabilities. It reportedly performs various tests, including attack surface testing, subdomain enumeration, and SSL misconfiguration detection. Users receive real-time updates and have access to two actionable reports.

Integrate With Your DevOps Lifecycle: According to the vendor, Blacklock can be seamlessly integrated into the DevOps pipeline for security testing. It allows users to create and assign JIRA tickets directly from their Blacklock account, streamlining the vulnerability remediation and retesting processes.

Vulnerability Scanning: Blacklock reportedly offers the capability to scan both external and internal infrastructure, web applications, and APIs. It supports both unauthenticated and authenticated web applications and conducts dynamic application security testing through on-demand or scheduled vulnerability scanning.

Security Testing: According to the vendor, Blacklock provides in-depth manual security testing conducted by certified professionals. The platform reportedly adheres to OWASP compliant testing and reporting standards, covering infrastructure, API, unauthenticated, and authenticated web applications. It tests various aspects, including business logic, authentication, and access control.