Supported standards | Fluid Attacks Help

Supported standards

Supported

Fluid Attacks conducts security testing to verify your application's adherence to requirements currently mapped to these standards:
  1. Agile Alliance
  2. BSIMM
  3. BIZEC APP
  4. BSA Framework for Secure Software
  5. CAPEC™
  6. CASA
  7. C2M2
  8. CCPA
  9. CERT® C
  10. SEI CERT® Oracle® Secure Coding Standard for Java™ 
  11. CIS
  12. CMMC
  13. CPRA
  14. CWE™
  15. CWE Top 25
  16. ePrivacy Directive
  17. FACTA
  18. FCRA
  19. FedRAMP
  20. FERPA
  21. FISMA
  22. GDPR
  23. GLBA
  24. HIPAA
  25. HITRUST CSF
  26. ISA/IEC 62443
  27. ISO/IEC 27001
  28. ISO/IEC 27002
  29. ISSAF
  30. LGPD
  31. MITRE ATT&CK®
  32. MISRA C
  33. MVSP
  34. NERC CIP
  35. NIST SP 800-53
  36. NIST SP 800-63B
  37. NIST SP 800-115
  38. NIST SP 800-171
  39. NIST CSF
  40. NIST SSDF
  41. NYDFS Cybersecurity Regulation
  42. New York SHIELD Act
  43. OSSTMM 3
  44. OWASP API Security Top 10
  45. OWASP ASVS
  46. OWASP MASVS
  47. OWASP Mobile Top 10
  48. OWASP SAMM
  49. OWASP Secure Coding practices
  50. OWASP Top 10
  51. OWASP Top 10 Privacy Risks
  52. PA-DSS
  53. PCI DSS
  54. PDPA
  55. PDPO
  56. POPIA
  57. PTES
  58. Resolution SB-2021-2126
  59. SANS 25
  60. SIG Core
  61. SIG Lite
  62. SOC 2®
  63. SWIFT CSCF
  64. WASC
  65. WASSEC

Unsupported

Currently, Fluid Attacks has not mapped security requirements to these standards:
  1. 21 CFR
  2. APRA PPG 234
  3. AWS Foundational Technical Review (FTR)
  4. Catalog of Problematic Data Actions and Problems (PDAP)
  5. Cloud Controls Matrix (CCM)
  6. Cloud Security Alliance (CSA)
  7. DCID 6/3
  8. Digital Operational Resilience Act (DORA)
  9. DISA STIG
  10. DoD Instruction 8500.1
  11. DoD Instruction 8550.1
  12. Enduring Security Framework (ESF)
  13. European Directive 1995/46/EC
  14. European Directive 2002/58/EC
  15. European Directive 2019/881
  16. European Directive 2022/2555
  17. FFIEC
  18. FIPPA
  19. FS-ISAC
  20. ISO/IEC 27017
  21. ISO/IEC 27018
  22. ISO/IEC 27701
  23. Japan's Personal Information Protection Act
  24. Massachusetts 201 CMR 17.00
  25. Microsoft SSPA
  26. MITS
  27. NIS2
  28. NIST IR 8397
  29. NIST SP 800-108 Rev. 1
  30. NIST SP 800-161 Rev. 1
  31. NIST SP 800-163 Rev. 1
  32. OCC
  33. OWASP Web Security Testing Guide
  34. PCI
  35. PIPED Act
  36. Privacy Act of 1974
  37. Safe Harbor
  38. Secure Supply Chain Consumption Framework (S2C2F)
  39. SOX
  40. SOX ITGC
  41. TISAX
  42. Transparency & Consent Framework (TCF)
  43. TCPA
  44. TSS-WEB
Free trial message
Free trial
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.