Web applications

Web applications are most visible target for attacker. Simplicity of usage make from them most spread platform for online publication, business and information management. This is because they are very attractive target also for attackers.

You don't have to be a bank or big market share e-shop to be target. Attackers know very well weak points in web application. Do you know it?

During testing we are focusing for example on these vulnerabilities

• cross site scripting,
• cross site tracing,
• SQL injection,
• manipulation with application logic,
• brute force attacks.

Besides of traditional problems we are focusing also on support systems like web server ,authentification and autorization server, database subsystem and so on.

Usually we test application on many levels of authorization (depends on application type). Typically test are done from anonymous user point of view and from authorized user point of view, or administrator.

Output from testing of web application

Output from web application penetration test is final report which consists from list of identified risks, evaluation from security point of view and list of recommendations

During final report and its presentation we will help you with communication with provider or we can supervise fixing of problematic parts. By elimitating risks in your application you are overtaking direct financial loses or reputation loss.