Get a free quote
You are here > Services > Web Security Analysis

Web Security Analysis

Web Security becomes more and more actual problem. More and more sites are hacked every day.

Coding Staff offers web security analysis service to avoid hacking and assistance with resolving issues with already hacked sites.

About 60 test scenarios will be checked during security analysis. Below is the list of widespread attacks on web which should be checked in the first place:

  • XSS (Cross Site Scripting)
  • SQL Injection
  • Authentication Bypass
  • Insufficient Authorization
  • Weak Password Recovery Validation
  • Client-side Attacks
  • Shell Command Execution
  • Code Insertion/Execution
  • Information Disclosure
  • Path Traversal
  • Predictable Resource Location
  • Abuse of Functionality

The result of security analysis will be security report that describes in details the result of security specialist work. The security report contains:

  • a) Executive Summary Section – this section intends for business owners (not technical people) that shortly describes the result of security analysis, top of the most critical issues with calculated risks for business.
  • b) Technical Management Overview – this section intends for technical staff that describes scope of the security analysis work, instruments that were used during security analysis and risk calculation method.
  • c) Assessment Findings – this section contains list of test cases that were checked against the site. Each test case will have status (successfully checked or not). Every parameter on every page will be checked.
  • d) Screenshots – all our findings will be proved by created screenshots, defined steps to reproduce or links on created video

More detailed info you can find here.