Web App Penetration Testing: Discover Your Hidden Vulnerabilities
By:
Ankercloud GmbH
White, Gray, and Black box Penetration Testing for your Web Application following the standard industry guidelines (Open Worldwide Application Security Project - OWASP, SANS top 25, etc.) to discover if your Web Application is protected against the most common attacks. The test covers all the important categories like authentication, authorization, identity management, input validation, and much more.
Overview
The project starts with a requirements-gathering phase for your specific application, which can be done through a questionnaire, directly in a workshop, or a combination of both.
After our Security team learns about your specific situation and needs, we will provide you with a complete Statement of Work outlining all the important info on our collaboration.
The workload can then start right away according to your preferred time frame. We test your environment, compile a full report, and have a full Knowledge Transfer (KT) workshop to explain the results.
We will also contact you directly in case of any emergencies or major vulnerabilities found while testing.
Approaches
Pen Testing can be performed with the following approaches:
- Black Box: a test in which the team does not know anything or much more about your application than a normal user (no access to source code, backend, etc.).
- White Box: our team will have full access and complete knowledge of your application.
- Grey Box: a middle ground between the other two approaches.
Timelines
Timelines strongly depend on the size and complexity of your application and the approach used. In most cases, you can expect the workload to be completed in 2-4 weeks.
Deliverables
Ankercloud will provide you with a complete Pen Testing Report, containing:
- Workload summary
- Vulnerabilities, and how a malicious attacker could exploit them (Vulnerabilities, Impact & Mitigations)
- Improvement suggestions
- Any additional scans/reports upon specific request
Re-Testing
At the end of the workload, you will have complete knowledge of the vulnerabilities of your application, giving you the possibility to remediate them accordingly. If you need to re-test your application (we could mention like - retest after the remediation of reported vulnerabilities), Ankercloud can offer special benefits - contact us for more details.
Where to start?
To get started with Penetration Testing, submit a request (Click 'Continue' on top right of the page) or contact us at cloudengagement@ankercloud.com and get your FREE intro session with our Cloud team.
Efforts required from you:
- Application info and initial ‘go ahead’
- Credentials/access to the Application (depending on the approach used. It is needed in case of white/grey box testing)
- Detailed scope of what is to be tested
- Direct communication line and a reference contact for emergencies
Why Us?
Ankercloud is an AWS Advanced Partner with 80+ AWS Professional Certifications and 10+ AWS designations (competencies and delivery programs), with in-depth Cloud and Cybersecurity experience. Bring us the next challenge!
| Sold by | Ankercloud GmbH |
| Categories | |
| Fulfillment method | Professional Services |
Pricing Information
This service is priced based on the scope of your request. Please contact seller for pricing details.
Support
For any further questions, feel free to reach out to cloudengagement@ankercloud.com or by compiling the form at https://www.ankercloud.com/contact-us