Anitian Enterprise Security
888.ANITIAN
info@anitian.com

Services

Web Application Testing

Web applications can greatly enhance an organization's ability to deliver services to both internal staff and customers. Web applications are also, however, a lightning rod for hackers. Improper validation, database access and infrastructure weaknesses can conspire to make web applications a tempting target.

Anitian’s Web Application Testing services are designed to help organizations assess the integrity, security and privacy issues affecting web applications. This service is ideal for companies deploying new web applications or looking to secure existing ones.

Web application testing is also required for compliance with the PCI-DSS. Anitian can offer tests specifically designed for web applications that handle payment card data.

Some of the tests Anitian performs include:

  • SQL injection
    Attempting to gain access to databases through injection of special codes in an application.
  • Input fuzzing
    Altering the inputs in an application.
  • Privilege escalation
    Attempting to alter access rights of an application to gain access to restricted data or system components.
  • Code / script injection
    Insert code into an application or vulnerability in an attempt to gain access to the host system or other applications.
  • Man in the Middle (MITM) testing
    Attempt to intercept traffic and access data or inject false data.
  • Session hijack
    Attempt to gain access to a different application session.
  • Spoofing
    Mimic certain functions or interactions to cause an application to behave in a unwanted manner.
  • Active defense evasion
    Methods to evade or obfuscate the ability of active defenses (like intrusion prevention systems) to properly prevent known attack techniques.

Features of Anitian's Web Application Testing Services:

  • World-Class Testing Capabilities
    Anitian Labs uses a sophisticated and powerful application testing infrastructure that leverages a massive repository of commercial, open source, clandestine and custom hacking and testing tools.
  • Open Web Application Security Project (OWASP)
    Anitian bases application testing around OWASP framework. See http://www.owasp.org for more information about OWASP.
  • Realistic
    Anitian Labs focuses on testing realistic attacks and threats to a client's systems.
  • Understanding of Infrastructure
    As a security integrator, Anitian’s in-depth insight into the weaknesses and strengths of modern systems and networks allows for a more intelligent testing process.
  • Extensive
    Anitian looks beyond client applications to test infrastructure and hosting components as well.

For more information, please call 888.ANITIAN, or email Anitian Enterprise Security.

Home | Services | Products | About Us | Events | Support | Info
FacebookLinkedInTwitterRSS FeedEmail
All material in this web site is copyright © 1995-2012, Anitian Corporation. All Rights Reserved Worldwide.
Please read Anitian's copyright and privacy policy page for more information.