Cyberport Bilişim Hizmetleri olarak, 6698 sayılı Kişisel Verilerin Korunması Kanunu (“KVKK”) ve ilgili mevzuat kapsamında kişisel verilerinizin korunmasına büyük önem vermekteyiz. The main function of the DATASKOPE product is to ensure that access and changes to critical database systems are as expected, planned and desired. You can do all these operations without activating the audit feature in the database. DATASKOPE detects, classifies, generates alarms and reports the events that occur in your database systems. It is a database audit product that allows you to easily access information about who accessed sensitive data and which operations were performed at what intervals, and allows authorities to be informed about the events with predefined alarm rules. You can perform the following audits and report with DATASKOPE: Login – Allows you to track successful and unsuccessful logins to the database. Data content change – Allows you to track commands such as SELECT, UPDATE, DELETE, EXEC, etc. Access Tracking – Allows you to track who accessed sensitive data. Database Administrator Audit – Tracks user creation, deletion, etc. and allows you to take action. Classified Audit – Allows you to decide who can view transactions based on user, database, table, command. Reporting – Allows you to get reports that comply with standards such as ISO27001, COBIT, PCI, SOX. NoSQL Search Engine Horizontally and vertically scalable. Geographically and locally redundant Distributed search across multiple units Automatic backup and archiving Automatic masking of sensitive data T.R. identity recognition and masking Credit card recognition and masking Email recognition and masking RegEx (Regular Expressions) desteği < Back Datascope

Api Güvenliği, Pentest, LLM, Yapay Zeka, Mobil Veri Güvenlik, Maskeleme, Yapay Zeka, API Güvenliği, LLM, Mobil ve Veri Güvenlik, Maskeleme hizmetlerinde uzman çözüm ortağınız. Proaktif koruma. Ürünler Ürünler Data Security & Data Discovery Discover our solutions designed to explore and understand your data—the most valuable asset of the digital age—with a wide range of analytical options. While fully safeguarding your data security and privacy concerns, we focus on sensitive data monitoring and usage, ensuring all access and changes to your critical database systems occur in a planned and secure manner without the need to enable auditing, thus helping you make much smarter, data-driven decisions. Data Focus Datascope Test Data Management (TDM) Dataspin Data Touch BitBox

APIFORT, geniş bir güvenlik tehditleri ve zayıflıklar yelpazesine karşı API'ler korumak amacıyla tasarlanmış gelişmiş bir siber güvenlik çözümüdür. APIFORT, modern web uygulamalarını, mikro servisler ve bulut, yerinde (on-prem) ve hibrit ortamlardaki API'leri korur. APIFort Nedir? APIFort, API’leri (yani yazılımlar arası veri iletişim noktalarını) modern siber tehditlere karşı koruyan gelişmiş bir API güvenlik çözümüdür. Hem bulut hem şirket içi (on-premise) hem de karma (hybrid) ortamlardaki API’leri korur. Neden API Güvenliği Önemli? API’ler artık web uygulamaları ve mikroservislerin merkezindedir. Bu yüzden: Veri hırsızlığı, Yetkisiz erişim, Anomali (şüpheli trafik) tespiti, Kritik verilerin korunması, OWASP API güvenlik riskleri, Güvenlik standartlarına uyum gibi büyük risklerle karşılaşılır. APIFort bu riskleri azaltmak için geliştirilmiştir. APIFort’un Temel Özellikleri ✔️ Otomatik API keşfi: Tüm API’leri ve uç noktaları bulur. ✔️ Gerçek zamanlı saldırı tespiti: Anında API saldırılarını fark eder. ✔️ Anomali ve davranış analizi: Trafikteki şüpheli hareketleri yakalar. ✔️ Risk skoru: API’lerin güvenlik riskini puanlar. ✔️ Kritik veri tespiti: Hassas verileri bulur ve izler. ✔️ Shadow/Orphan/Zombie API tespiti: Belgelenmemiş veya unutulmuş API’leri ortaya çıkarır. ✔️ Güvenli kodlama desteği ve sürekli test desteği sağlar. Nasıl Çalışır? APIFort: API’lerinizi otomatik olarak tarar ve envanterini oluşturur, Trafiği izler ve anormal davranışları öğrenir, Gerçek zamanlı olarak saldırıları tespit eder, Riskli noktaları skorlayıp önceliklendirir, Güvenlik ekiplerine net bilgiler sunar. APIFort, API güvenliğini görünür, izlenebilir ve sürekli korunan bir hale getirir; riskleri otomatik olarak tespit eder, saldırılara karşı gerçek zamanlı savunma sağlar ve mevcut güvenlik süreçlerinizle entegre olur. Entegrasyon ve Kolay Kullanım SOAR Rapid7 InsightConnect Splunk Phantom Cortex XSOAR (Demsto) Mesajlaşma Uygulamaları Slack MS Teams Telegram SIEM Splunk SIEM Splunk Phantom Cortex XSOAR (Demisto) Evrensel Entegrasyon General WebHooks Public APIs Atlassian Jira < Back APIFort Protect APIs, Secure the Future

MwGuard, uygulamayı çalışma anında izleyerek gerçekleşebilecek saldırıları tespit eden, engelleyen ve raporlayan bir güvenlik teknolojisidir. HCL AppScan, Web, mobil ve açık kaynaklı uygulamalardan gelen en yaygın güvenlik açıklarını; statik (SAST), dinamik (DAST), etkileşimli (IAST) ve yazılım bileşen analizi (SCA) gibi sektör lideri teknolojilerle tespit eder. Ürünler Ürünler Mobile & Web Application Security Our Mobile and Web Security technologies provide an advanced protection system that monitors your application in real-time, detecting, blocking, and reporting potential attacks in detail. Integrated into the application, it proactively detects not only external threats but also potential risks through internal behavioral analysis. Thanks to various security mechanisms, it stops attack attempts, prevents unauthorized access, and ensures uninterrupted security by continuously monitoring the integrity of the application. MWGuard MWGuard HCL AppScan

WizeBuddy, şirketinizin insanlarını, belgelerini, uygulamalarını ve süreçlerini tek bir arayüzde sorunsuz bir şekilde birbirine bağlayan AI destekli bir Sanal Asistandır. What Does WizeBuddy Do? WizeBuddy is an AI-powered Virtual Assistant that seamlessly connects your company's people, documents, applications, and processes in a single interface. Use Cases - Human Resources Departments CV Search Assistant: Speed up your recruitment process! It finds the most suitable candidates from thousands of CVs in seconds and recommends them for you. Onboarding Assistant: Manage your new employee onboarding processes seamlessly. Discover the AI solution that automatically manages documentation, training, and all process steps. Contracts Virtual Assistant: Take your contract processes to the next level with the AI assistant that gives you quick access to all the information you need about contracts. Save time with instant access to the right information. AI Process Automation Assistant: Save time and money by automating your business processes with AI. It quickly handles routine tasks for you and automates your process flows. Employee Request Support Assistant: Provide instant support to employees and streamline human resources processes with AI. Where does the service come from? Optimize your time and workload by instantly answering a wide range of employee questions, such as "How do I list my leave?" Email Assistant: Organizes your inbox, instantly replies to your emails, and helps you communicate more effectively. Make email management effortless. Voice Assistant: Understands user conversations and answers questions. Saves time, increases accessibility, and provides quick access to information. - IT Help Desks Voice Response Assistant: Understands user conversations and answers questions. Saves time, increases accessibility, and provides quick access to information. - Sales Department Voice Response Assistant: Understands customer requests and answers questions. Saves time, increases accessibility, and provides quick access to information. Benefits Effective Task Automation Smart Integrations 24/7 Availability Cost and Time Savings 40% Reduction in Opened Tasks 40% Reduction in Workforce Improvement in Employee and Customer Satisfaction Ready-to-Use Integrations for Every Organization Microsoft Teams . SAP Successfactors Microsoft Sharepoint . Workday Kolay IK . Azure CosmosDB Confluence . ElasticSearch File Connector . Jira Salesforce . Whatsapp Email . Slack AWS S3 . Google Drive Zendesk . Azure Blobe Storage All Databases . Outlook . Google Calendar < Back WizeBuddy Your Virtual Assistant

Verilerinizi keşfedin, güvence altına alın. Hassas veri izleme ve denetim özelliği açmadan veritabanı erişimlerini kontrol edin. MWGuard Mobile Application Security Platform Application Shielding Application Shielding is a technology developed to protect corporate applications located on user devices in environments where corporate companies cannot access them. This protection approach prevents: Reverse engineering, Tampering, Unauthorized access, It proactively protects the application on the device it runs on against threats such as malware and emulator-based attacks. RASP RASP (Runtime Application Self-Protection) is a security technology that monitors applications at runtime to detect, block, and report potential attacks. It integrates with the application and detects attacks not only externally but also by analyzing the application's internal behavior. MWGuard includes various security mechanisms to protect applications against potential runtime threats. These mechanisms: Attack attempts are detected in real time, Application behavior is monitored, Unauthorized interventions are prevented. MWGuard Plugin Static Protection Code Obfuscation Dynamic Protection (Run-Time) Root Detection Emulator Detection Tampering Detection Debugger Detection Hook Detection Static Protection MWGuard protects your application from reverse engineering by obfuscating your code and all text within it. Code Obfuscation Makes your source code harder to read and analyze. String Obfuscation Obscures not only the code itself but also the text within it (e.g., key names, constants). It offers comparable advantages to popular solutions (like DexGuard). Dynamic Protection Root Detection Dynamic Protection Emulator Detection Dynamic Protection Tampering Detection Dynamic Protection Debugger Detection Dynamic Protection Hook Detection Malware Detection Permission Requirement: Requires the "QUERY_ALL_PACKAGES" permission to scan all apps on the device. Allowed Applications: Antivirus applications File managers Internet browsers Google Restriction: As of March 31, 2021, this permission has been limited due to the protection of personal and sensitive data. Domestic Power, Global Vision MWGuard was developed with 100% domestic technology. Full Compliance with Legislation Local infrastructure facilitates compliance with regulations. Flexible Development and Organization-Specific Adaptation Rapid response to changing needs, customizable architecture. Fast Procurement and Project Processes Delay-free installation, integration and support. Local Support and Service Rapid response, effective communication without language barriers and sustainable service quality. Data Security All data is hosted domestically, minimizing external dependency and risk of data leakage. < Back

HCL AppScan, web, mobil ve açık kaynaklı uygulamalardan gelen en yaygın güvenlik açıklarını; statik (SAST), dinamik (DAST), etkileşimli (IAST) ve yazılım bileşen analizi (SCA) gibi sektör lideri teknolojilerle tespit eder. What is HCL AppScan? It is a comprehensive application security platform that helps organizations protect their business processes and data. It detects the most common vulnerabilities from web, mobile, and open-source applications using industry-leading technologies such as static (SAST), dynamic (DAST), interactive (IAST), and software component analysis (SCA). It enables vulnerabilities to be addressed before applications are deployed to production. Thanks to its easy-to-use, detailed reporting and centralized dashboard structure, it makes the organization's application security risk visible and manageable from end to end. It provides a centralized platform that eliminates silos within the organization by enabling all stakeholders, from developers to CISOs, to communicate on the same security data. It provides comprehensive protection at every stage of the software lifecycle. HCL AppScan Benefits You use a single platform for all your application security needs. Offers a fully hosted/managed, subscription-based service. Gathers and correlates results from multiple testing technologies. Enhances scanning accuracy with machine learning. Integrates with leading IDEs, CI/CD environments, and source code management (SCM) tools. Expands coverage for niche languages with the BYOL (Bring Your Own Language) framework. Provides complete control over open-source vulnerabilities. Offers frequent updates with security research based on trends and threat models. Provides real-time updates to detect zero-day vulnerabilities. Backed by a dedicated security research organization and expertise. Enhances compliance with regulations and legislation such as GDPR, PCI-DSS, and HIPAA. HCL AppScan Features Easy Integration with DevOps: Quickly integrates with IDE, CI/CD, and DevOps tools. Provides end-to-end security with SAST, DAST, IAST, SCA, and API tests. Strengthens Security with Machine Learning: Performs faster and deeper scans, reducing false positives. Speed and coverage balance is easily managed with AppScan Slider. Centralized Risk Management: All test results and remediation processes are monitored from a single screen. Supports enterprise and regulatory compliant security policies. Container and Cloud Security: Reduces risks in cloud environments by scanning Docker containers and images. Open Source Security (SCA): Automatically detects open source components and continuously monitors known vulnerabilities. Automation and Customization: Integration and processes can be customized according to organizational needs with APIs and the AppScan Automation Framework. DevSecOps Lifecycle Integration It is involved in every step of the security development process. Plan & Code: Enables developers to receive real-time feedback within the IDE while writing code and to fix errors instantly. Build & Test: Integrates with CI/CD processes to automate SAST, DAST, IAST, and SCA tests and prevent vulnerabilities from reaching production. Publish & Deploy: Continuously monitors running applications and APIs to identify new risks and validate the security posture. Operate & Monitor: Monitors applications in the live environment, provides automated issue correlation, and offers contextual insights based on runtime behavior. Security Testing Technologies SAST (Static Analysis - "White Box"): Analyzes the application's source code without running it, identifying vulnerabilities at the beginning of the development process. DAST (Dynamic Analysis - "Black Box"): Tests the running application from the outside, like a hacker, to identify vulnerabilities at runtime. IAST (Interactive Analysis - "Glass Box"): A high-accuracy hybrid method that combines the strengths of both SAST and DAST by working within the application. SCA (Software Component Analysis): Checks for known vulnerabilities and license compliance issues in third-party libraries and open-source components. API Security: Provides specialized security testing solutions for APIs and web services of modern applications. < Back AppScan

Cyberport Bilişim Hizmetleri olarak dijital dünyaya yenilikçi projelerle, iş dünyasına yepyeni bir bakış açısı getiriyoruz. Firmaların, hızla değişen dijital ortamda rekabet avantajı elde etmelerine yardımcı oluyoruz. Contact Location Esenyalı Mah. Yanyol Cad. Varyap Plaza No:16 İç Kapı No: 247 Pendik / İstanbul Phone Phone: +90 850 309 7130 Fax : +90 850 522 3403 Mail info@cyberportbilisim.com Linkedin < Back

Api Güvenliği, Pentest, LLM, Yapay Zeka, Mobil Veri Güvenlik, Maskeleme, Yapay Zeka, Ürünler Ürünler Our Artificial Intelligence (AI) Products Our Artificial Intelligence (AI) products offer advanced technology solutions that make sense of data, optimize processes, and strengthen decision-making mechanisms in today's rapidly accelerating digital transformation. Thanks to our AI infrastructure focused on intelligent automation, secure analytics, and high performance, we enhance your business's competitiveness, maximize operational efficiency, and help you adapt to future business models today. Wizebuddy LLMFort

Yazılım test sürecinin önemli bileşenlerinden biri test verilerinin yönetimidir. Test verisi yönetimi, bir kuruluşun gerçek verilerini güvenilir bir şekilde taklit eden veri kümelerinin oluşturulmasıdır ve böylece sistem ve uygulama geliştiricileri daha titiz ve geçerli sistem testleri gerçekleştirebilirler. Gerçek veriler, güvenlik ve mevzuat kaygıları nedeniyle genellikle bir test sisteminde kullanım için uygun değildirler. A key component of the software testing process is test data management. Test data management is the creation of data sets that reliably mimic an organization’s real data so that system and application developers can perform more rigorous and valid system testing. Real data is generally not suitable for use in a test system due to security and regulatory concerns. In order to protect data that contains personal information from development and testing teams, this data must be modified for testing. TDM is used in corporate companies to generate test data. As a result of digitalization and increasing application usage, the production and management needs of institutions to meet this need are also increasing. With our software solutions and KVKK application, the Test Data Management (TDM) product, which mimics the real data of institutions and creates data sets, will now ensure the protection of sensitive data from the developer teams of institutions. In addition, the Test Data Management (TDM) product has entered the product catalogue of global software provider OpenText to be sold worldwide. Benefits: Test data preparation is a large part of the total effort spent on testing. Test Data Management significantly reduces the time required for this effort. Ensures the security, consistency and integrity of test data. It prevents people's sensitive data from being visible to development and testing teams. Provides test data similar to real data. Transfers test data between environments faster than before. Provides bidirectional test data transfer between databases and files. It helps organizations develop higher quality software. Dashboard It is a management tool that allows the entire test operation to be monitored on a single screen, based on personnel. Current Data Generation Suite & Case study reports can be viewed. Success and failure rates are shown in Daily Transaction Counts and Weekly Transactions. Additionally, when Data Generation Suite & Case is selected, the Status Report and Duration Report are displayed at the bottom of the page for that transaction. History Screen You can see all your transactions on the History screen and follow them from this area. Data Generation Suite & Case transaction details can be accessed. Successful and unsuccessful details are shown. Each transaction output can be accessed from this area. Details of successful and unsuccessful logs can also be accessed from this screen. Project Screen These are the pages where new projects are created and the created projects are listed, by determining which project the test data will be created within. More than one project can be created. Projects can be granted authorization to specific users. Business Flows can be defined individually on a project basis. You can easily query Selectable Business Flow and Selectable Users fields using Filtering. You can update your Project from the listing page and manage it as you wish. Project & Suite Management Domain and Product Definitions can be made. Authorization and user-based role definition can be made. Authorization can be done on a user and group basis. Data Generation Suite & Case Management and Reporting can be done. Data Generation Suite Management: Test work of projects can be separated and grouped. The created groups are listed. Test data is obtained from these groups. Here, the user can select all or any Data Generation Cases he/she wants and run them by giving parameters. Test Case Management Test data with the desired flexibility can be produced. By giving priority, the system will work efficiently. Collective management can be achieved. Rapid adaptation to changing systems will be ensured. It can be run according to the parameter values of the Cases selected on the Data Generation Suite & Case screens. Status information is shown on the listing page. The data generated for successful cases can be accessed from the history page. You can also see which parameter was used for which operation on the history page. Dynamic Data Generation All SDM capabilities are available. Data Transfer, Masking, Recovery Web Service Integration Rapid adaptation to changing systems will be ensured. < Back Test Data Management (TDM)