Businesses increasingly rely on Web-based applications to interact with their customers and partners. These Web applications contain many security vulnerabilities making them ideal targets for attacks.
Website security is possibly today's most overlooked aspect of securing your business and should be a priority in any organization. Hackers are concentrating their efforts on web-based applications - shopping carts, forms, login pages, dynamic content, etc. Web applications are accessible.
24 hours a day, 7 days a week and control valuable data since they often have direct access to backend data such as customer databases.
Find out if your web site is secure before hackers download sensitive data, commit a crime using your website as a launch pad, and endanger your business.
Web application attacks go straight through firewalls while evading your operating systems and network level security. Tailor-made web applications are often insufficiently tested, have undiscovered vulnerabilities and are therefore easy prey for hackers gaining access to the heart of your corporate data.
Protecht.ca checks for all web vulnerabilities including SQL injection (SQLi), Cross Site Scripting (XSS) and others. SQL injection is a hacking technique which modifies queries in order to gain access to sensitive data in your database. Cross Site Scripting attacks allow a hacker to execute a malicious script on your customer’s browser.
Detection of these vulnerabilities requires a sophisticated detection engine. Paramount to web vulnerability, scanning is not the amount of attacks that a scanner can detect, but the complexity and thoroughness the scan report.
Protecht.ca Web Vulnerability Scans includes an extensive report which can show whether your web applications meet security standards including VISA PCI Data Compliance requirements.
Elements tested for in a Web Application Scan:
- SQL Injection
- Cross Site Scripting
- Cross Site Request Forgery
- Server Leakage
- HTTP Sniffing
- HTTP Fuzzing
- Password Protected Areas
- Web Forms
Protecht.ca has two levels of Web Application Scans:
- Preliminary Automated Scan - Protecht.ca scans for the most common vulnerabilities against websites and applications.
- Advanced Scan with Validation - Protecht.ca provides an in-depth audit of your web application and site that greatly reduces false positives.
Why Do Web App Scanning?
Organizations need a Web application scanning solution that can scan for security loopholes in Web-based applications to prevent hackers from gaining unauthorized access to corporate applications and data.
"75% of Internet attacks are now happening through Web applications."
"87% of Websites are vulnerable to attack."
"The average cost of a data breach is $6.6 million dollars."
Ponemon Institute 2009