4Armed can assess your website for vulnerabilities related to input validation, output validation, logic flaws, insecure direct object reference, insecure session handling and many more. Such issues can result in common websites attacks such as SQL injection, Cross Site Scripting (XSS) or Cross Site Request Forgery (CSRF).

We can provide a number of assurance services such as:

We specialise in assessing the security of web applications written in the programming language PHP. This is a very common language on the Internet due to the ease with which beginners can produce effective dynamic web sites. Unfortunately, the ease of adoption has meant a large number of people with no previous experience of secure code development are able to provide businesses with websites which, though they appear functional, are actually leaving their customers data vulnerable to online theft.

We will probe your website with a combination of automated tools and manual review in order to identify common and not so common vulnerabilities in your web application. Items found will be added to the final report along with remediation advice to pass to your developers.

A Web Application Penetration Test moves on from the Web Application Security Assessment by providing a full attack simulation where any flaws identified are exploited to gain unauthorised access to data stored within the web application or in order to provide deeper access into the network in order to attack a specified target, such as a database.

Contact us for more information about our Web Application Security Assessment services.