Web Application Assessment

Websites are subject to advanced database requests, dynamic modules, client logic and much more. All these features can be used to get access to backend servers, and collect useful information or conduct further harmful actions. Therefore attacks through websites are highly successful, and it is important to check the safety of these applications on a regular basis.

We offer the following deliverables within this service:

  • Hotline Support: day to day troubleshooting and support
  • Professional Services: ad-hoc assessment of your web applications
  • Managed Services: a fully managed service delivered as a cloud service
  • Solutions: best of breed products integrated to fit your demands 

Services

Hotline

When things get complicated, we will support you and provide direct access to the vendor support.

Hotline is available via email, phone and the customer portal. Response time is defined by the SLA you attach to the agreement:

  • 8 x 5 x 4
  • 24 x 7 x 4

Professional

Analysis & Design
Years of experiences implementing the solutions from Tenable.

Implement & Configure
If you buy the solution, we can do more than a simple Rack & Stack. We will support throughout the deployment and deliver a detailed set of system documentation.  

Deployments are always performed by combining best practices from the vendor with our own experiences.


Typically we can estimate deployments beforehand and are delivered using fixed pricing. We have the following deployment options available:

  • Small: 15 hours
  • Medium: 50 hours
  • Large: 100 hours
     

Review & Assess
Secu Web Application Assessment offers ad-hoc external scans of web applications in order to identify vulnerabilities in your web application, making you able to take action before they are exploited. We use several different scanning tools, and on top of that, thorough manual tests to validate any automated findings and discover more advanced vulnerabilities that the automated scans did not find. Secu Web Application Assessment can be applied on any web application or website regardless of the platform and technology.

An accurate report with findings and recommendations is finally delivered and presented.

Managed

Secu Web Application Assessment Service (WAAS)

A fully managed service providing on-going assessments of web applications.

Technical Capabilities:

  • SQL injection
  • Parameter tampering
  • Cookie hijacking
  • Password bruteforcing
  • Broken Session Management
  • Insecure Direct Object Reference
  • SSL Encryption
  • Cross-Site Request Forgery
  • Outdated plugins
     

Service Capabilities:

  • Access reports and dashboards from customer portal
  • Fine-tuned platform scaled to scan multiple web applications without latency

Technologies

Tenable

Tenable Web Application Scanning delivers safe and automated vulnerability scanning that covers your entire online portfolio. By bringing comprehensive and accurate web application scanning into a broader vulnerability management solution, you can see and manage your security exposure across all types of assets and fully protect your organization.