Web Application Security Testing

Web applications are one of the primary attack vectors used by cyber criminals to hack into an organization.  It is thus essential to keep web applications secure.  Cyber Security and Privacy Foundation Pte Ltd helps to identify and eliminate vulnerabilities in web applications more easily and cost effectively.

Security Testing

  • Scanning Servers for OS/Network Vulnerabilities
  • Scanning Web application server for Vulnerabilities
  • Scanning Framework/CMS Vulnerabilities

Scanning for Web application Vulnerabilities Standards – The OWASP Top 10 – 2013

  1. A1 Injection
  2. A2 Broken Authentication and Session Management
  3. A3 Cross-Site Scripting (XSS)
  4. A4 Insecure Direct Object References
  5. A5 Security Misconfiguration
  6. A6 Sensitive Data Exposure
  7. A7 Missing Function Level Access Control
  8. A8 Cross-Site Request Forgery (CSRF)
  9. A9 Using Components with Known Vulnerabilities
  10. A10 Unvalidated Redirects and Forwards