Your customers regularly use your website and mobile applications to engage with your company. This makes them an ideal target for attackers looking to access confidential customer data or harm your company’s reputation. Our assessments use the latest automated and manual testing techniques to detect vulnerabilities, and our actionable reports give you the vulnerability and remediation details you need to immediately begin addressing the most severe risks.
Focal Point's application security reviews use comprehensive automated analysis and targeted manual testing techniques to detect critical vulnerabilities.
Prior to testing, our team reviews the application to gain a better understanding of its scope and architecture. This includes discovering hidden and exposed content and identifying publicly available information that will aid in testing.
In Phase 2, our team uses carefully configured and monitored automated tools to perform an initial test of the security controls in place to protect the application. Automated analysis allows our team to cover the most ground during this initial phase.
Next, our team deploys manual testing methods to validate the results uncovered during automated analysis. This phase evaluates the “real-world” impact of discovered vulnerabilities through a series of proof-of-concept demonstrations.
At the close of the engagement, our team provides you with a detailed report that covers testing methods, identified vulnerabilities (e.g., input injection, improper session management, etc.), and a plan for remediating these issues.