Introduction
Our Web Security Test combines automated tools with in-depth manual testing by CyResLab security researchers. This approach ensures comprehensive coverage of your website’s security posture, focusing on key functionalities and tailoring the testing to your specific needs.
How We Conduct the Test
- Identification Phase: We begin by identifying and probing different network and web services to understand your website’s infrastructure.
- Testing Phase: Following the identification phase, our researchers perform a range of manual tests to uncover vulnerabilities associated with common attack vectors like XSS, CSRF, injection attacks, and more.
- Reporting and Recommendations: You will receive a detailed report outlining discovered issues. Each finding will be accompanied by a severity assessment (impact, attacker profile, and total score) and suggested mitigation techniques (advisory level). CyResLab can also provide further assistance in defining and implementing corrective security measures tailored to your specific requirements.
What’s Included
- Scans using both well-known open-source tools (e.g., Nmap, OpenVAS, Nikto) and proprietary CyResLab tools designed for these tests.
- Manual testing by CyResLab researchers:
- Light Web Security Test: Up to 25 hours
- Standard Web Security Test: Up to 35 hours
Ideal for
Clients are seeking a comprehensive assessment of their website’s security posture against standard Web Attack vectors.
Certification
Upon successful completion, attendees will receive a certificate from ESI CEE.
Enroll today and empower yourself to build secure and resilient systems!
Contact us here.