Case Study: Microsoft Corporation achieves a world-class, scalable web application security program with Rapid7 AppSpider

Microsoft Trusts Rapid7 AppSpider Building a World-Class Web Application Security Program

Microsoft’s Cloud and Enterprise Security Services team set out to build a world-class, scalable web application vulnerability scanning service to support the company’s diverse online services. After months-long evaluations, the team determined their legacy, homegrown tooling could not keep pace with modern, dynamic clients and numerous APIs, so they sought a solution that delivered broad coverage, low false positives, robust reporting, and extensibility to meet enterprise and compliance needs.

They selected Rapid7 AppSpider for its ability to handle complex authentication and RESTful APIs, a strong, open API for custom tests and integrations, and easy integration with Microsoft’s internal tools. AppSpider’s extensibility and responsive partnership enabled Microsoft to centralize scan data and reporting, reduce false positives, and deploy a scalable application security program that better serves internal teams while protecting the company’s customer-facing reputation.

Microsoft Corporation