If you are a Vendor

Shipping a web application with security flaws is asking for trouble. Your customers will ask if your Web Application is sufficiently secure against well known flaws such as Cross Site Scripting and SQL Injection as well as design flaws which are equally common. What you want is the lack of security flaws in your web application and to increase the value of your web application. Therefore, once we perform a Web Application Security review, you may want to show our straightforward reports to your customers to gain competitive advantage over your competitors.

If you are a Customer

Often there is no way of knowing if your vendor independently audited the Web Application. Many Web Applications are developed under tight deadlines and very little thought is given to security. We have reviewed numerous client and public Web Applications and often found high impact security flaws. We strive to ensure that any security issues are ironed out before they become a real issue for your clients.

What you get

• Review the Web Application Design to identify design flaws
• Checks for common implementation security flaws such as Cross Site Scripting, SQL Injection, Cross Site Request Forgery and Remote File Inclusion
• Research of new (unpublished) security vulnerabilities that might affect your Web Applications
• Two page Executive Summary report
• Technical report detailing the flaws and how to fix
• All of our reports are written and tailored for our customers.
• All results are manually verified