Our professionals at EagleClaw offer comprehensive WAP testing capabilities that scan to
exploit and interact with web applications just as an attacker would, to test for existing
vulnerabilities. Out testing would identify the strengths or weaknesses in web applications and
web servers, by simulating dynamic exploits that compromise security. We have customized
tools that crawls the web and find the URL’s to be tested. Crawl web pages and identify URLs
to test. We use vulnerability scanners to import results, filter them and identify points of
exposure. Our tools address the current security threats that your organizations faces and they
include:
1. Â SQL Injection – Traditional and Blind –OWASP A1
2. Â OS Command Injection– OWASP A1
3. Â Cross-Site Scripting–OWASP A2 Services
4. Â Broken Authentication and Session Management–OWASP A3
5. Â Insecure Direct Object References–OWASP A4
6. Â Cross-Site Request Forgery–OWASP A5
7. Â Security Misconfiguration–OWASP A6
8. Â Insecure Cryptographic Storage–OWASP A7
9. Â Failure to Restrict URL Access–OWASP A8
10. Insufficient Transport Layer Protection–OWASP A9
11. Â Unvalidated redirects and forwards–OWASP A10