w a p testing

Our professionals at Sacha Technologies offer comprehensive WAP testing capabilities that scan to exploit and interact with web applications just as an attacker would, to test for existing vulnerabilities. Out testing would identify the strengths or weaknesses in web applications and web servers, by simulating dynamic exploits that compromise security. We have customized tools that crawl the web and find the URLs to be tested. Crawl web pages and identify URLs to test. We use vulnerability scanners to import results, filter them and identify points of exposure. Our tools address the current security threats that your organization faces and they include:

1. A SQL Injection – Traditional and Blind –OWASP A1

2. A OS Command Injection– OWASP A1

3. A Cross-Site Scripting–OWASP A2 Services

4. A Broken Authentication and Session Management–OWASP A3

5. A Insecure Direct Object References–OWASP A4

6. A Cross-Site Request Forgery–OWASP A5

7. A Security Misconfiguration–OWASP A6

8. A Insecure Cryptographic Storage–OWASP A7

9. A Failure to Restrict URL Access–OWASP A8

10. Insufficient Transport Layer Protection–OWASP A9

11. A Unvalidated redirects and forwards–OWASP A10