Web Application Assessment Services

Organisations, who have implemented effective network security solutions, may still have holes within their network, through various weakly developed or designed applications.

"Firewalls are no longer enough..."

An organisation may already have a current, well-developed integrated security solution. However the types of threats that come from poor application programming that allow attackers to take control of a server have become more sophisticated and require a combination of technologies to perform an assessment.

EWA's Web Application Assessment Service can help organisations protect their assets from threats targeted at web applications.

The resulting report will incorporate all assessment findings and activities into a clear, concise, document containing recommendations and mitigation strategies for the identified issues, sufficient for the organisation's risk management.

We understand the limitations of automated testing tools, and as such, the majority of our testing is performed and verified though manual activities. These activities are conducted using a repeatable, consistent methodology. Automated tools are still used in the assessment, however only where they are known to be accurate, effective and value adding.

Methodology

We have developed a detailed, methodical and consistent approach incorporating known and community accepted methodologies to web application penetration testing, ensuring our processes are efficient, and repeatable to bring you a quality result. Our methodology ensures coverage of the OWASP Top Ten issues and beyond.