Security Testing
When it comes to software assurance, we focus on finding security problems using a combination of architecture review, code review and penetration testing, depending on your needs and ability to share architecture documents and source code.
Architecture Review
Security problems at the architecture level are the most difficult and expensive to fix, especially later on in the development process We can review an architecture to find security problems as early as you have a document ready We identify the different actors in the system, handled data (i.e. assets), its level of sensitivity, external services, modules and trust boundaries We identify risks to the confidentiality, integrity and availability of the assets We propose mechanisms to eliminate, mitigate, avoid risks, or even transfer risks to a third party by using external services
Code Review
Whether your application is ready to be put in production or not, we can perform a code review to find security problems with the code (also called white box testing) We support Node.js, Swift, and Java web applications
Penetration Testing
If you have a web application in a test environment available, we can perform a penetration test (black box test) on it Unlike code reviews, pen testing is available for applications written in any language using any framework, running on any platform
Reach us at: contact {at} defsense {dot} eu
Built with Nuxt, Tailwind and deployed on Cloudflare
Copyright © 2024 Defsense