A Website Assessment is necessary to protect ecommerce websites, protect information portals from reputation risk and defacement and allow your customers to trust the data transfered to and from your website. You need to aggressively identify and fix any web vulnerabilities to provide a safe and secure experience for your customers. A penetration test is the best option available to find out and fix any problem with the site.
We will test the overall adequacy of the security surrounding the website with a penetration test. Our testing will document the security exposures of the application. We will use a combination of tools, utilities and methodologies to review the various potential points of security failure. As vulnerabilities are found, we will attempt to exploit them to achieve privileged access to the site.
All web application penetration test will involve but not limited to the following methodologies:
| Analysis of data access requirements | Source code analysis |
| Input validation | Source sifting |
| Transport mechanism | Site design |
| Functional Specification & Implementation | File system traversal |
| Error Handling & Exception Management | Access Control & Authorization |
| Secure code development | Data Confidentiality |
| Training regime | Authentication |
| Business requirements of applications |
Session Management |
- Troyak shutdown signals short-lived win against Zeus
- Pennsylvania CISO out of a job following RSA Conference appearance
- Twitter to vet links with goal of curbing phishing attacks
- India, Mexico, Brazil have most Mariposa bots
- Microsoft offers two fixes, but reveals a zero-day bug
- Report: Federal cybersecurity plan facing barriers
- Energizer software found to open backdoor
- China to prosecute Google hackers if evidence shows
- Microsoft readies two patches for Windows, Office flaws
- Four charged with hacking ticket vendors