Code Review

What is Code Review?

Security code review is an in-depth analysis of the application's code aimed to detect security vulnerabilities by inspecting the actual code of a given system. It is used to detect security bugs, reveal hidden backdoors in the code and reach full coverage of a given system’s vulnerabilities. The test will attempt to find weaknesses, the source of which is insufficient secure coding policies, business logic flaws, internal structures and the systems design.

Whether used to detect security bugs as a thorough alternative for a penetration test or as the means for detecting backdoors in the code, security code review is a complicated task that must be performed by a well exprienced auditor. We provide exactly that.

Secure coding best practices:

Discovering vulnerabilities is done according to OWASP and WASC methodologies. A partial list of some of them:

	User authentication
	Authorizations
	Input validation mechanisms
	Configuration data protection
	Information confidentiality
	Information integrity
	Cryptography and key management
	Password policy
	Session management
	System administration interface protection
	Secure access to databases
	Endpoint protection for sensitive data
	Runtime error management
	Auditing & logging

And many more other vulnerabilities that can cause significant damage to your company.

* Name:
* Email:
* Phone:
Company:

Application Security

Penetration Testing

Our Latest Tools

New Tool Launch - Belch 1.0.13

Check it out!! (click here)

New Android Penetration Testing Platform-

Our Books

Managed Code Rootkits

by Erez Metula

Contact Us