03 : Attack Surface
The ability to quickly identify the attack surface is essential.
Map your organization attack surface!
001/006
Network Scanning
Our network security scanner helps you scan your IP address ranges to discover open services, in order to quickly identify a host firewall with holes, services poorly configured and other security vulnerabilities specific to network devices.
002/006
Vulnerability Scanning
Your assets are tested for known vulnerabilities and misconfiguration. Vulnerability scans performed from externally hosted servers give you the same perspective as an attacker. This has the advantage of understanding exactly what is exposed on external facing services.
003/006
SQL Injection Test
Our SQL Injection test allows to check for injectable parameters on a web URI. SQL injection continues to be a favourite target of attackers. Successful attacks provide an attacker access to data dumps containing credit card information, usernames, passwords and other information.
004/006
XSS Attack test
Cross-Site Scripting (XSS) is one of the most common application-layer web attacks. A successful XSS attack leads to an attacker controlling the victim’s browser or account on the vulnerable web application.
005/006
SSL/TLS Testing
Check SSL/TLS services for vulnerabilities and weak ciphers. Identifying known vulnerabilities and cryptographic weakness is an important part of the vulnerability assessment process.
006/006
Sensitive Data Exposure
Sensitive Data Exposure vulnerabilities can occur when a web application does not adequately protect sensitive information from being disclosed to attackers. This can include information such as credit card data, medical history, credentials, source code, or Directory Listing.