Revolutionizing DevSecOps
with Simplicity and Agility

ABOUT
i3GIS

i3GIS is an end-to-end platform from i3 that provides security testing tools and DevSecOps tool in a single dashboard. With its commercial modular capabilities and easy enhancement, i3GIS is an ideal choice for developing business application and managing DevSecOps to help company across a variety of industries in protecting their business straight from the development process.

i3GIS’S MODULES

Swipe left to explore modules

I3GIS Module – Application Security

Invincible Application Security to Shield Your Source Code

To ensure maximum application security, you need a comprehensive, multi-layered security approach. We provide this with comprehensive application security tools that protect your app and its code from potential threats throughout the entire development lifecycle, ensuring the highest level of security while safeguarding them from vulnerabilities and cyber-attacks.

  • Static Application Security Testing (SAST)

    Inspecting source code prior to execution, allowing you to resolve security issues before the application is developed and released.

  • Software Composition Analysis (SCA)

    Evaluates app security that involves analyzing apps, libraries, frameworks, and packets for vulnerabilities and security issues.

  • Secret Check

    Examines the source code and app configuration for secret information like credentials, tokens, and encryption keys to prevent a breach.

  • Misconfiguration Repository

    Gathers misconfigured app or system data to help you understand application security issues.

I3GIS Module – Dynamic Security

Advancing Dynamic Application Security Testing with Extra Protection

DAST (Dynamic Application Security Tools) helps your developers and QA teams test their web applications and APIs for potential security threats, so you can identify vulnerabilities that could compromise the integrity of data or the privacy of users. This helps ensure that your application meets security standards securely and properly.

  • Web Scan

    Website and web app scanning for vulnerabilities and ensuring the app’s security.

  • API Scan

    API scanning to discover vulnerabilities and ensure that the information contained within the API is secure.

I3GIS Module – Mobile Security

The Ultimate App Security, Right in Your Hands

Our Mobile Security solution helps keep your mobile applications secure by scanning them for vulnerabilities. It analyzes the source code, architecture, and configuration of your mobile app to identify potential weaknesses such as SQL injection, OWASP Top 10 attacks, and other types of threats.

  • Android APK Scan

    APK (Android Package Kit) file scanning to detect vulnerability.

  • iOS IPA Scan

    IPA file in iOS scanning to detect vulnerability.

I3GIS Module – Container Security

Level Up Your Container Security with Top-Tier Protection

We protect application containers prior to deployment and installation to ensure they are protected from cyber attacks and conform to security standards and privacy regulations. This module is still in development and will be coming soon.

  • Authentication and Authorization

    Ensure that only authorized people have access to the containers and their apps.

  • Runtime Security

    Ensure that the container and its app continue running during runtime.

  • Data Security

    Ensure the security of data received and sent via a containerized app.

  • Network Security

    Ensure that communication between containers and their ecosystem is secure and not susceptible.

  • Monitoring and Audit

    Monitor activities and do regular audits to ensure that the containerized app is running properly.

I3GIS Module – Monitoring Security

Streamline Your Action with All-in-One Monitoring Security

Our monitoring security will routinely check the security and activity of information systems in real time. You can identify whether there is any security that might harm the system in just one dashboard, as well as take the following action to resolve the issue. This module is still in development and will be coming soon.

  • Network Activity Monitoring

    Detecting any ongoing threat in the network.

  • System Activity Monitoring

    Detecting any ongoing threat in the operating system and software.

  • App Activity Monitoring

    Detecting any ongoing threat in the application activity.

  • Log Analysis

    Detecting any suspicious activity by analyzing log system.

  • Alarm and Notification

    In the event of a cyber-attack, ensure that the alarm and notification mechanisms can alert in a timely manner.

I3GIS Module – Infrastructure Security

Maximizing Time Efficiency with Infrastructure as Code Tools

Security for your infrastructure is a top priority, which is why we provide Infrastructure-as-code tools for automation hardening against potential attacks. Network, system, data, application, and device security are all covered. This module is still in development and will be coming soon.

  • Network Security

    Improving the use of firewalls and encryption to ensure that the IT network is secure and not exposed to attacks.

  • System Security

    Keeping the operating system and applications secure via updates and antivirus software.

  • Data Security

    Data encryption ensures the security of data stored and received in the infrastructure.

  • App Security

    Using app security analysis to ensure that the application is protected and resistant to attacks.

  • Monitoring and Audit

    Monitor activities and conduct regular audits to verify the infrastructure is running properly.

I3GIS Module – Report Security

Comprehensive Log Data Analysis for Enhanced Security Insights

Our Report Security goes with log data analysis to identify potential vulnerabilities in your app. The report will provide recommendations on how to fix these issues and ensure the continued secure operation of your application. It can be accessed historically and will be available in separate versions for developers and management. This module is currently under development and will be released soon.

  • Application Report

    Include any vulnerabilities and other threats discovered during security testing of the running app.

  • Dynamic Report

    Includes potential vulnerabilities and other risks discovered during Dynamic Application Security Testing.

Why i3GIS

Become Compliance DevSecOps Tools for Business

End-to-End DevSecOps Solution

i3GIS offers comprehensive DevSecOps solution to help business fulfill security standard in Indonesia.

Single Dashboard Management

Manage all aspects of DevSecOps implementation with ease to accelerate your business growth.

Modular Features for Business

Simple to use with existing software that the company has already been using. You can also use which module based on what company most needed.

Cost Saving Potential

Save more cost by only paying once for more features and modules, no more extra cost for different solutions from various vendors.

Focus on Customer Satisfaction

As the business grows, i3GIS team will facilitate the company’s feedback or request related to which features they need to meet future demands.

Start Your DevSecOps Journey NOW!

Fill the form below, your personal information will not be published. Required field are marked *

Contact Form

FREQUENTLY ASKED
QUESTIONS

Technical

The issue stems from the OWASP Top 10 and CVE (Common Vulnerabilities and Exposures) findings; the infrastructure module will then refer to the CIS benchmark.

Java (Maven and Gradle), .NET, Golang, Python, PHP, Javascript, Typescript, etc.

Yes, i3GIS offers a custom role that can be applied to each user in organization.

SAST GNU Lesser GPL License v3, MAST GNU GPL License v3, and Apache License 2.0.

Each month, the vulnerability database will be automatically updated. If the i3GIS service is in production, it will be manually updated by the i3 team.

By default, we offer five Quality Code Filter levels with various security standards.

The changelogs is kept in the GitBook.

Currently, i3GIS is using docker-compose, going forward we will use Kubernetes.

It is based on its own calculations depending on the numbers of findings.

Yes, it is also possible to customize when it will be cleaned.

Non Technical

There are two types of services: managed services and self-services. Managed services are which we install and maintain, so users simply get the report, while self-service is which we install and provide training, so users operate themselves.

It is an annual subscription system.

It is potentially implemented in the near future.