ranryu List of Products and Services

Ranryu's "Smartphone App Vulnerability Diagnosis Service" goes beyond mere tool diagnostics by combining static analysis, dynamic analysis, and manual diagnosis by security engineers to accurately detect vulnerabilities unique to mobile apps, such as deficiencies in API communication and improper data storage. Furthermore, after the diagnosis, we provide improvement proposals, reporting sessions, re-diagnosis, and ongoing monitoring, offering reliable and effective security measures. ■ Features and PR Points - Peace of mind from public certification: A service provided by a company registered with the Ministry of Economy, Trade and Industry and IPA. - Three flexible plans to choose from: From cost-focused options to thorough diagnostics. - Diagnosis items specific to mobile: Focused attention on API authentication and authorization deficiencies, data storage issues, session management, and more. - Detailed reports leading to improvements: Evaluation based on OWASP Mobile Top 10 and IPA standards, along with correction proposals. - Site seal provision: Visualizes that diagnostics have been conducted, appealing to users and business partners for trust. - Regular diagnosis packages: Continuous improvement of app security with 2 to 4 diagnoses and re-diagnoses per year.

• Other security
• Firewall and intrusion prevention

Ranryu's "API Vulnerability Diagnosis Service" conducts assessments in accordance with the OWASP API Security Top 10, OWASP ASVS, and IPA standards. It goes beyond mere automated tool assessments by combining them with manual evaluations conducted by engineers holding internationally recognized white-hat hacker certifications, addressing API-specific risks such as authentication and authorization flaws, token management, and excessive information disclosure that are difficult to detect with tools alone. Furthermore, after the diagnosis, we support improvement proposals, reporting sessions, re-assessments, and continuous monitoring, providing effective measures to safely operate APIs. ■ Features and PR Points - Peace of mind from public certification: A service provided by a company registered with the Ministry of Economy, Trade and Industry and IPA. - Detailed reports leading to improvements: Evaluation based on OWASP and IPA standards, along with correction proposals. - Site seal provision: Visualizes that the diagnosis has been conducted, appealing to partners and customers for trust. - Regular diagnosis package: 2 to 4 assessments per year, along with re-assessments, to continuously improve security levels.

• Other security
• Firewall and intrusion prevention

Ranryu's "Website Vulnerability Diagnosis Service" conducts additional manual verification based on the information obtained after a diagnosis using tools. This manual verification allows for the discovery of vulnerabilities that may be overlooked by tools alone. By adding options, it is possible to conduct diagnoses that are "specialized for WordPress," "include web application diagnosis elements," and "include platform diagnosis elements." ■ Main Targets - Static websites focused on information dissemination - Systems primarily centered around content display. ■ Diagnosis Perspective A diagnosis that emphasizes the verification of static content and basic security settings. ■ Main Use Cases - Corporate websites - Landing pages - Blog sites, etc. ■ Features and PR Points - Assurance of public certification: A service provided by a company registered with the Ministry of Economy, Trade and Industry and IPA. - Detailed reports leading to improvements: Evaluation based on OWASP and IPA standards, along with correction proposals. - Site seal provision: Visualizes that a diagnosis has been conducted, appealing to trust from business partners and customers. - Regular diagnosis packages: 2 to 4 diagnoses per year, plus re-diagnosis, to continuously improve security levels.

• Other security
• Firewall and intrusion prevention

Ranryu's "Platform Vulnerability Diagnosis Service" is a highly reliable diagnostic service registered on the IPA public list as a service compliant with the Ministry of Economy, Trade and Industry's "Information Security Service Standards." ■Features Rather than merely detecting and reporting, it evaluates the "real risks" through a unique scoring system. It quantifies priorities by combining the following three elements: - Vulnerability items and scores (CVE / CVSS) - Exploitability (EPSS) - Asset and environmental information (importance, exposure level, configuration status, etc.) This unique scoring clarifies "which vulnerabilities should be addressed first," enabling effective and rapid improvements even with limited resources. ■PR Points - Assurance of public certification: Registered service with the Ministry of Economy, Trade and Industry and IPA - Two flexible plans to choose from: From cost-focused to thorough diagnostics - Risk assessment aligned with actual operations: Identifying "real dangers" through unique scoring - Site seal provision: Visualizing completed diagnostics to build trust with partners and customers - Regular diagnostic package: Continuous improvement of security levels with 2 to 4 diagnostics per year plus re-diagnostics.

• Other security
• Firewall and intrusion prevention

Ranryu's "Web Application Vulnerability Diagnosis Service" is a highly reliable diagnostic service registered on the IPA public list as a service compliant with the Ministry of Economy, Trade and Industry's "Information Security Service Standards." Not limited to mere tool diagnostics, it combines manual diagnostics by security engineers to prevent false positives and oversights. Furthermore, after the diagnosis, it offers improvement proposals, reporting sessions, re-diagnosis, and continuous monitoring, providing effective and reassuring security measures. ■ Features and PR Points - Peace of mind from public certification: Registered service with the Ministry of Economy, Trade and Industry and IPA - Four flexible plans to choose from: Ranging from cost-focused to thorough diagnostics - Detailed reports leading to improvements: Evaluations based on OWASP and IPA standards, along with correction proposals - Site seal provision: Visualizes completed diagnostics to instill trust in clients and partners - Regular diagnostic packages: 2 to 4 diagnostics per year, plus re-diagnosis, to continuously enhance security levels.

• Other security
• Firewall and intrusion prevention

Are you neglecting the "invisible risks" of web services? Don't just stop at "discovering" vulnerabilities. We provide actionable support all the way to remediation and improvement. ■ Do you have these concerns? - You think you are taking security measures, but you have never confirmed them from an external perspective. - You want to ensure the safety of your web services or internal systems before their release. - You are being asked by clients or business partners to submit a diagnostic report. - You want to effectively identify security risks within a limited budget. ■ What is ranryu's vulnerability assessment service? Ranryu Co., Ltd. provides vulnerability assessments targeting web services and business systems, with engineers holding CEH and Information Security Management certifications, as a registered business compliant with the Ministry of Economy, Trade and Industry's "Information Security Service Standards." The key feature is that we not only conduct assessments but also consistently provide concrete countermeasure support for detected risks and review security policies. With a wealth of experience in system development and infrastructure construction, we offer technical advice and implementation support to ensure that your assessment results are not left "as is." We support the strengthening of your security from a realistic perspective.

• Other security
• Firewall and intrusion prevention