Supported standards | Fluid Attacks Help

Supported standards

Supported

Fluid Attacks conducts security testing to verify your application's adherence to requirements currently mapped to these standards:
  1. Agile Alliance
  2. BSIMM
  3. BIZEC APP
  4. BSA Framework for Secure Software
  5. CAPEC™
  6. CASA
  7. C2M2
  8. CCPA
  9. CERT® C
  10. SEI CERT® Oracle® Secure Coding Standard for Java™ 
  11. CIS
  12. CMMC
  13. CPRA
  14. CWE™
  15. CWE Top 25
  16. ePrivacy Directive
  17. FACTA
  18. FCRA
  19. FedRAMP
  20. FERPA
  21. FISMA
  22. GDPR
  23. GLBA
  24. HIPAA
  25. HITRUST CSF
  26. ISA/IEC 62443
  27. ISO/IEC 27001
  28. ISO/IEC 27002
  29. ISSAF
  30. LGPD
  31. MITRE ATT&CK®
  32. MISRA C
  33. MVSP
  34. NERC CIP
  35. NIST SP 800-53
  36. NIST SP 800-63B
  37. NIST SP 800-115
  38. NIST SP 800-171
  39. NIST CSF
  40. NIST SSDF
  41. NYDFS Cybersecurity Regulation
  42. New York SHIELD Act
  43. OSSTMM 3
  44. OWASP API Security Top 10
  45. OWASP ASVS
  46. OWASP MASVS
  47. OWASP Mobile Top 10
  48. OWASP SAMM
  49. OWASP Secure Coding practices
  50. OWASP Top 10
  51. OWASP Top 10 for LLM applications
  52. OWASP Top 10 Privacy Risks
  53. PA-DSS
  54. PCI DSS
  55. PDPA
  56. PDPO
  57. POPIA
  58. PTES
  59. PURL
  60. Resolution SB-2021-2126
  61. SANS 25
  62. SIG Core
  63. SIG Lite
  64. SOC 2®
  65. SWIFT CSCF
  66. WASC
  67. WASSEC

Unsupported

Currently, Fluid Attacks has not mapped security requirements to these standards:
  1. 21 CFR
  2. APRA PPG 234
  3. AWS Foundational Technical Review (FTR)
  4. Catalog of Problematic Data Actions and Problems (PDAP)
  5. Cloud Controls Matrix (CCM)
  6. Cloud Security Alliance (CSA)
  7. DCID 6/3
  8. Digital Operational Resilience Act (DORA)
  9. DISA STIG
  10. DoD Instruction 8500.1
  11. DoD Instruction 8550.1
  12. Enduring Security Framework (ESF)
  13. European Directive 1995/46/EC (DPD)
  14. European Directive 2002/58/EC (e-PD)
  15. European Directive 2022/2555 (NIS2)
  16. European Regulation 2019/881 (Cybersecurity Act)
  17. European Regulation 2024/1689 (AI Act)
  18. European Regulation 2024/2847 (CRA)
  19. FFIEC
  20. FIPPA
  21. FS-ISAC
  22. ISO/IEC 27017
  23. ISO/IEC 27018
  24. ISO/IEC 27701
  25. Japan's Personal Information Protection Act
  26. Massachusetts 201 CMR 17.00
  27. Microsoft SSPA
  28. MITS
  29. NIST IR 8397
  30. NIST SP 800-108 Rev. 1
  31. NIST SP 800-161 Rev. 1
  32. NIST SP 800-163 Rev. 1
  33. OCC
  34. OWASP Web Security Testing Guide
  35. PCI
  36. PIPED Act
  37. Privacy Act of 1974
  38. Safe Harbor
  39. Secure Supply Chain Consumption Framework (S2C2F)
  40. SOX
  41. SOX ITGC
  42. TISAX
  43. Transparency & Consent Framework (TCF)
  44. TCPA
  45. TSS-WEB
Free trial message
Free trial
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.