top of page

cyber security web assessments

This assessment involves a review of external access into a company’s web apps or websites. Our engineers methodically identify cyber security weaknesses that could allow an attacker to gain access to the web apps or the data contained therein. Vulnerability testing is performed remotely from our lab, based on the OWASP (Open Web Application Security Project) and WASC (Web Application Security Consortium).

  • Performance of unauthenticated (black box) web application cyber security testing

  • Utilization of vulnerability scanning tools, scripts, and manual tests

  • Validation and documentation of all findings

  • Identification of potential avenues to circumvent cyber security measures, such as common  design vulnerabilities (e.g., SQL injection, cross-site scripting (XSS), cross-site request forgery (CSRF) and URL redirection

  • Discussion of the current cyber security environment’s business impact.

  • Final report detailing all identified vulnerabilities with corresponding recommendations, including but not limited to the following:

    • ​Server platform and web application vulnerabilities

    • Access control issues

    • Communication protocol issues

    • Identification of gaps against best practices

    • Recommendations to mitigate identified risks

bottom of page