A Website Assessment is necessary to protect ecommerce websites, protect information portals from reputation risk and defacement and allow your customers to trust the data transfered to and from your website. You need to aggressively identify and fix any web vulnerabilities to provide a safe and secure experience for your customers. A penetration test is the best option available to find out and fix any problem with the site.
We will test the overall adequacy of the security surrounding the website with a penetration test. Our testing will document the security exposures of the application. We will use a combination of tools, utilities and methodologies to review the various potential points of security failure. As vulnerabilities are found, we will attempt to exploit them to achieve privileged access to the site.
All web application penetration test will involve but not limited to the following methodologies:
| Analysis of data access requirements | Source code analysis |
| Input validation | Source sifting |
| Transport mechanism | Site design |
| Functional Specification & Implementation | File system traversal |
| Error Handling & Exception Management | Access Control & Authorization |
| Secure code development | Data Confidentiality |
| Training regime | Authentication |
| Business requirements of applications |
Session Management |
- New Hampshire legislature rejects biometrics bill
- Faux Facebook emails use password reset ploy
- Revised draft of Cybersecurity Act introduced in Senate
- Security firm finds bug in Microsoft virtual program
- Gartner: Virtualization security will take time
- Ransomware not considered threat for Mac OS X
- Web fraud losses more than double in 2009, says report
- Apple issues Safari 4.0.5 to fix 16 vulnerabilities
- LifeLock settles with FTC over ID theft product claims
- Troyak shutdown signals short-lived win against Zeus