SunSmart is one of the very few niche players in the area of Software Code, Security Vulnerability Audit and Web Application security Audit. SunSmart will carry out:-
Passive Information Gathering
We will manually interrogate the web application to understand the application's logic.Various testing tools are used for information gathering such as an HTTP proxy to observe all the HTTP requests and responses. The objective of the passive phase is to understand all the access points (gates) of the application (e.g., HTTP headers, parameters, and cookies). Information Gathering is a vital part of any web application security assessment.
⚆ Authorization Testing
⚆ Authentication Testing
⚆ Business Logic Testing
⚆ Session Management Testing
⚆ Configuration Management Testing
⚆ Denial of Service Testing
⚆ Data Validation Testing
⚆ Web Services Testing
⚆ SQL Injection
⚆ Ajax Testing
Dedicated team of security testing experts comprising architects and analysts.
Extensive experience in vulnerability assessment and penetration testing of applications.
Expertise across all key technology includes .NET, J2EE etc.,
Specialized expertise in complementing segments including Banking, Financial services, Insurance, securities, Manufacturing, Health care & life sciences.
Extensive security test coverage with excellent tracking facilities.