Web Application Security Assessment

Description

Web application assessments are performed to identify potential or realized weaknesses as a result of inadvertent mis-configuration, weak authentication, insufficient error handling, sensitive information leakage, etc

Scope

Phase 1

• Scanning of Web Application
• Manual Security Assessment of Web Application
• Testing and Validation popular vulnerabilities (but not limited to)
Phase 2 Depending on the requirement and approval • Exploitation Testing on exploitable vulnerabilities
• Privileges Escalation Test (wherever possible)

Deliverables
Technical report, attack/vulnerability impact with mitigations guidelines/recommendations, revalidation test (if required), advisory