Web Application Security
As many as 70% of web sites have vulnerabilities that could lead to the theft of sensitive corporate data such as credit card information and customer lists. Hackers are concentrating their efforts on web-based applications - shopping carts, forms, login pages, dynamic content, etc. Accessible 24/7 from anywhere in the world, insecure web applications provide easy access to backend corporate databases.
Commercial Tools - Invicti, OWASP, Acutenix, Burp Suite, Nessus
Free Tools - WordPress scan, SSLScan, SQLmap, Pen-Test Tools
Mobile Application Security
The Mobile Application security assessment approach is based on our application security assessment . The key difference is the security model around the client -side security – traditionally, an end -user is in control of their device and is responsible for securing their computer against attackers and malware with the service provider only offering hints or free software . Furthermore, the most common client -side application, a web browser lives in a dynamic security ecosystem in which many security researchers raise awareness of various security issues and major vendors quickly respond with a fix.
Commercial Tools - Finite State, Pentera, Burp Suite, AppUSE
Free Tools - Dex2jar, Dexplorer, Cycript JD, GUI, Clutch2, MobSF, 0tool, APK Tool
