Menu
Web applications and APIs are the core of many organizations’ online presence and are a central target for malicious actors to attack your organization. Locking down these exposed web apps with a Cyber Arq vulnerability assessment, where our industry leading experts utilize industry scanning tools and human creativity to identify your organizations web application vulnerabilities.
• At least annually, recommended semi-annually
• New code deployment to Web Applications
• Third party integrations to Web Applications
• Changes to your encryption in Transit and at Rest
• API storing or has data passing through such as, PCI, PHI or PII.
• Highly recommended to be coupled with a web application penetration test.
• AS OFTEN AS YOU LIKE
1. Define Scope
Detailed outline with the customer to define what assets are in scope.
4. Vulnerability Analysis
Utilize enterprise and custom scanning tools to uncover vulnerabilities.
2. Information Gathering
Map out the corporate infrastructure based on services, ports, hardware, software and operating system.
5. Reporting
Creation of Executive and Detail technical reports for both management and remediation team.
3. Threat Modeling
Determine mission critical and connected assets to corporate data through white, gray or black box approach.
6. Exit Call
Call scheduled with customers management and remediation team to explain in detail the findings and assist in remediation processes.
1. Define Scope
Detailed outline with the customer to define what assets are in scope.
2. Information Gathering
Map out the corporate infrastructure based on services, ports, hardware, software and operating system.
3. Threat Modeling
Determine mission critical and connected assets to corporate data through white, gray or black box approach.
4. Vulnerability Analysis
Utilize enterprise and custom scanning tools to uncover vulnerabilities.
5. Reporting
Creation of Executive and Detail technical reports for both management and remediation team.
6. Exit Call
Call scheduled with customers management and remediation team to explain in detail the findings and assist in remediation processes.
Network devices, Cloud infrastructure, Web applications, Wireless, Mobile applications and Internet of things devices
Network devices, Cloud, Wireless, Web application, Internet of things devices, Mobile applications, Social engineering, Continuous penetration testing and Active directory enumeration
Florida – USA | Sydney – Australia
