Web Application Penetration TestingWeb application penetration tests performed by our consultants will begin with a reconnaissance stage. Public data repositories and light network scanning will be used to gain useful information about your web infrastructure. Additional active scanning is then initiated to fingerprint detailed system, service, and application information. The assessment will then begin from an anonymous perspective as all publicly accessible portions of your web application will be tested for vulnerabilities. These tests will attempt to discover flaws in authentication, authorization, session management, data sanitization, design, and information disclosure. These same steps will be repeated as an authenticated user of your web application to test your exposure from the perspective of an insider. Detailed reports will be provided to your organization upon completion. These reports will outline discovered information, points of vulnerability, technical details, and verbose technical reports. |
|
