To properly crawl an application, no matter what web technology is written in, we need technology.
The engines we use for deep scanning a web application fully replicate user interaction inside of a browser by executing and analysing all JavaScripts
Also, we crawl inside complex web technologies like AJAX, SOAP/ WDSL, SOAP/WCF, Java Frameworks, WADL, XML, AngularJS, EmberJS, JSON, Google Web Toolkit, CRUD, Ruby on Rails.
SQL Injection are old, but still very diffused hacking techniques: they allow attackers to modify SQL queries in order to gain access to data. Cross-Site scripting attacks allow attackers to execute malicious scripts inside visitors’ browser possibly leading to impersonation of that user.
We check in-depth for SQL Injection, Cross-Site Scripting (XSS) Vulnerabilities, Out-of-band SQL Injection and DOM-based XSS.
WordPress websites are scanned for more than 1000 known vulnerabilities in WordPress’ core components, plugin and themes.
Testing authenticated areas of your web applications is absolutely crucial. Providing a testing-purpose user credentials will ensure to perform a full testing coverage. The login sequence tool automates all necessary actions in order to re-play the scanning later, if required.
Assuming that after the first scanning the customer will fix the app to ensure proper app security, what will happen next? It depends on the application itself:
We suggest to apply for an Optanex scheduled scanning; every defined period of time a deep scanning will be executed and reports will be sent with application security status.
After 24 to 48 hours worktime, you’ll receive a summary and a detailed report for each website you have applied for.
All reports will be sent only to the technical email address you have specified.
Apply for an Optanex website vulnerability assessment compiling the form below; as soon as we’ll receive your request, we’ll inform you if testing is feasible or not.
If it’s feasible, you’ll receive the estimate in a few hours and if you decide to proceed our technical staff will start the testing. Note that pricing includes up to three websites testing.