Free Web application security assessment

Web applications – threat to the information security

Statistic shows that more than 90% of publicly available Web applications suffer from at least one security flaw that can allow malicious attacker to compromise application’s security or security of the users who are accessing those applications. During the last few years lot of attention is paid to the Web application security. However, number of vulnerabilities discovered is continuously growing.

Data from 2006. supports that as well. Cross Site Scripting (XSS) bugs are at the first place, with 21,5% of all vulnerabilities discovered. After that come SQL injection and PHP include vulnerabilities with 14,5% and 9,5%, respectively. Eventually, buffer overflow vulnerabilities are at the fourth place with 7,9%.
Beside the increasing number of vulnerabilities in Web applications, it is necessary to understand how it can affect your information system and related business processes.

Successful exploitation of the Web application’s vulnerabilities may allow attacker to:

Obtain sensitive data stored on the Web server or back-end database,
Deface Web site,
Execute system commands on the Web server,
Take control over the Web browser of the user who is accessing the application.

>> SAMPLE REPORT

Vulnerability detection	Environment
SQL inject cross site scripting (XSS) directory traversal file inclusion command execution default configuration (misconfiguration) common files backup files vulnerable web scripts etc.	PHP ASP ColdFusion WebSphere Tomcat etc.

This service is tailored for your needs if you:

Need fast and reliable Web application security assessment
Are not sure whether complete penetration test is necessary
Want to check efficiency of existing security controls
Or just want to have independent verification of yours Web application security

Register here
Name:	*	Last name :	*
E-mail:	*	Tel./Mob.:
Company:
Address:
URL:	*
	INFIGO IS offers a free Web application security assessment to the system administrators and managers who want fast security assessment of the systems for which they are responsible or have authority to conduct such tests. Client must not request this service without adequate permissions to conduct such test. INFIGO IS will provide free Web application security assessment only if clients e-mail domain matches Web application’s URL. Client is aware that Web application security assessment may be detected as malicious activity by company’s firewall, IDS, IPS or any other protective systems. Client will be informed via e-mail about the time of the test and IP address from which test will be conducted. Client is aware and accepts that the free Web application security assessment at his/hers own risk. INFIGO IS takes no responsibility for accuracy or liability for the damage that could arise from using this service. INFIGO IS will treat al personal data and information collected during the test as a business secret and will not share that information with third parties. INFIGO IS holds the rights to change the terms of this service usage, stop to offer this service, refuse to offer this service at any time.
	I agree to all the terms and conditions



Fields marked with * are required.

Free Web application security assessment

Web applications – threat to the information security

Vulnerability detection

Environment

This service is tailored for your needs if you: