We are a leading application security company with a full range of services around application threat modelling, security assessments, secure code review, trainings on secure coding, and implementing an application security strategy for your organization.
Our consultants have many years of experience in reviewing the design, code and features of applications from a security perspective cutting across various technology platforms such as ASP, ASP.NET, Java, PHP, Ruby on Rails, C++, etc. Also, we have done a number of mobile application security assessments across Android, iOS, and Blackberry platforms.
Application Security Assessment
Application Security Assessments are designed to identify and assess threats to the organization through proprietary applications or those delivered by vendors with little or no customization. Our application security assessment methodology is designed around the following well known security assessment guides such as:
- OWASP Top 10 (Open Web Application Security Project)
- Threat Modeling processes such as STRIDE and DREAD
- OWASP’s Software Assurance Maturity Model (OpenSAMM)
- Open Security Testing Methodology Manual (OSTMM)
- Web Application Security Consortium (WASC) guidelines