Click here to load reader
Upload
rockden
View
191
Download
2
Embed Size (px)
DESCRIPTION
Kualitatem offers a professional Web Application Security Testing service that can be used to identify vulnerabilities that exist on your web applications.
Citation preview
Web Application Security
Testing & Assessment
www.kualitatem.com
WEB APPLICATION SECURITY TESTING & ASSESSMENT With the increased reliance on data driven websites and the fact that 87% of the web is vulnerable to external threats, the
need for secure and reliable service delivery through the web has never been higher. An organizations IT Infrastructure
and web applications offer data access to customers, employees and other key stakeholders of a business. A minor
security loophole within this infrastructure can cost up to thousands of dollars in the form of higher post deployment costs,
legal fees, weak brand image and loss of loyal customers. Kualitatem can help you to create secure and stable networks,
processes, applications and more through leveraging real world techniques for identifying security exposures. Our current
service offering includes the following:
Web Application Security Testing Kualitatem offers a professional Web Application Security Testing service that can be used to identify vulnerabilities that exist on your web applications. This application testing can be performed remotely for external facing web applications or internally at your premises if the application is an internal one. The assessment is divided into five phases.
Vulnerability Assessments
Kualitatem provides thorough vulnerability assessments during which it closely maps the network architecture, examines all open ports, hosts and services accessible to the Web, and ensures that these network devices are secure against hacker attacks. Based on all vulnerabilities encountered during the process, the security posture of the customer's network is determined and reported.
Injection
Cross-Site Scripting (XSS)
Broken Authentication and Session Management
Insecure Direct Object References
Cross-Site Request Forgery (CSR
Security Misconfiguration
Insecure Cryptographic Storage
Failure to Restrict URL Access
Insufficient Transport Layer Protection
Invalidated Redirects and Forwards
www.kualitatem.com Email: [email protected]
About Kualitatem: Kualitatem (Pvt) Ltd. is independent software and IT auditing company providing end to end services across software and IT infrastructure auditing lifecycle to a global clientele. We have served some distinguished clients in the Government, Health, Finance, Leasing and Enterprise business sectors. We work with our clients as their quality growth partners and provide them with IT Security and Process auditing services against standards like ISO 27001:2005, BS 25999:2007, ISO 9216, TMM and CMM. Our software auditing and quality assurance portfolio revolves around variety of requirements including functionality, platform compatibility, performance, usability, security and penetration, code reviews and automation testing.
Penetration Testing / Ethical Hacking
The security team at Kualitatem is adept at executing rigorous penetration tests and the information during this process is then used to carry out penetration attempts on internal and external networks. This is followed by a thorough vulnerability analysis and recommendations for strengthening network and internet security.
Our security testing methodology used is based around the Open Web Application Security Project (OWASP) testing methodologies.