ZenQA offers Web Application Penetration Test service – a set of comprehensive tests to identify application vulnerabilities. We use a risk-based approach, grounded in both the application’s architectural reality and the attacker’s mindset, to gauge the application security adequately. By identifying risks in the system and creating tests driven by those risks, we focus on areas of code in which an attack is likely to succeed.

Vulnerability is an error that an attacker can exploit. We carry out various manual and automated web application penetration tests (based on STRIDE classification) to identify the following types of vulnerabilities of a web application - Cross Site Scripting (XSS), Injection Flaws (SQL, Command, LDAP,  XPath), Authentication & Authorization, Malicious File Execution, Insecure Direct Object Reference, Cross Site Request Forgery (CSRF), Information Leakage and Improper Error Handling, Broken Authentication and Session Management, Insecure Cryptographic Storage, Insecure Communications, and Failure to Restrict URL Access.

During the initial Threat Analysis of the application, the application architecture and technologies used are reviewed along with its entry points, assets, data flows and security mechanism – to shortlist most likely vulnerabilities that a malicious attacker will look for. Security test scenarios with test methods are defined in a test plan, and executed to probe the application for each of the identified threats. Along with a high-level summary report on application vulnerabilities, a detailed defect report is submitted for each of the vulnerabilities discovered during the test execution.