AppSweep Enterprise provides enhanced control and support, making it easier to use AppSweep across teams of any size.
| AppSweep Standard | AppSweep Enterprise |
Scan of Android & iOS Apps | ✔ | ✔ |
Unlimited scans | ✔ | ✔ |
Unlimited team members | ✔ | ✔ |
Static (SAST) & Interactive application security testing (IAST) | ✔ | ✔ |
✔ | ✔ | |
Alignment with OWASP MAS (MASVS/MASTG) categories | ✔ | ✔ |
Single Sign On (SSO) | ✘ | ✔ |
Extended CLI for integration | ✘ | ✔ |
Automated data retention policies | ✘ | ✔ |
Web based support | ✘ | ✔ |
Downloadable PDF report of findings | ✘ | ✔ |
Supported App Size | 512 MB | 1 GB |
Single Sign On (SSO)
AppSweep Enterprise’s Single Sign-On (SSO) feature streamlines and secures access to AppSweep by allowing users to log in using their organization’s existing identity provider (OpenID Connect) for single sign-on.
Extended API for Integration
Once you complete a scan, you can use the results command of the CLI, to programmatically access the scan results in a machine readable format. This feature allows you and your team to review and discuss issues to measure performance metrics, e.g., integrate tracking of issues and trends into the application development cycle.
After initiating a scan either manually or via AppSweep CLI, retrieve the scan results by running:
guardsquare scan results --wait-for static $BUILD_ID
This command outputs the results as JSON. The following snippet is an example finding:
{
"buildId": "$BUILD_ID",
"url":"https://appsweep.guardsquare.com/builds/$BUILD_ID",
"issueCounts": {
"high": 5,
"medium": 6,
"low": 7
}
"issues": [
{
"id": "$ISSUE_ID",
"url": "https://appsweep.guardsquare.com/builds/$BUILD_ID/issues/$ISSUE_ID",
"severity": "HIGH",
"type": "Debuggable flag set",
"description": "Android manifest attribute `android:debuggable=\"true\"` is set",
"findings": [
{
"hash": "$FINDING_HASH",
"totalFindings": 1,
"locations": [
{
"name": "AndroidManifest.xml",
"file": "AndroidManifest.xml",
"line": 14
}
]
}
]
},
],
}
The presentation of the detected issues in JSON is similar to that of the UI, excluding the code snippets. It groups similar findings under issues of the same category. Each issue has a URL to its details page in the UI.
Both issues and findings have stable identifiers across builds, respectively named $ISSUE_ID and $FINDING_HASH in this example. Therefore, unresolved issues/findings will remain present in the results in future builds. Suppressions in the UI are reflected in the results.
In case of multiple occurrences of the same finding, totalFindings field represents the number of detections of this finding. The provided location is a sample of the findings.
Automated Data Retention
Along with giving AppSweep users the ability to delete builds and fully manage the data stored in AppSweep, AppSweep Enterprise supports automated data retention controls, i.e., automatic deletion of builds. This allows you to set limits on how long or how many builds are kept in AppSweep.
When setting a data retention policy, you have three options:
Disabled: all builds / history will be retained unless manually deleted
Time: builds will only be retained for a specified number of days (at most 365)
Builds: only the specified number of recent builds will be retained (at most 99)
In order to modify the data retention controls you will also require the Team Manager permission within your team. You can confirm your permissions in the Team Settings area of AppSweep.
Web based support
AppSweep Enterprise customers have access to dedicated support through web chat channels. When users face an issue, they can reach out directly via the in-app chat feature within the AppSweep web user-interface. The AppSweep support team is committed to responding within a dedicated turnaround time to help you make the most of AppSweep’s capabilities.
You can access the in-app chat feature by clicking on the blue chat icon which is located on the bottom right hand side of the screen in the AppSweep webpage.
Downloadable PDF Report of Findings
AppSweep Enterprise provides a feature to download detailed PDF reports including the analysis findings. This report provides an overview of identified security issues, including severity levels, descriptions, and recommendations.
Supported App Size
AppSweep Enterprise supports the upload of larger applications, allowing applications up to 1GB in size. This extended limit accommodates complex, feature-rich applications and ensures they can be analyzed.