Cenzic CTSc SmartAttacks
A ForusP Secure Seal will be provided when all discovered vulnerabilities in a webapplcation have been repaired and/or a (re-)scan has proven that Hailstorm did not find any Medium or High Risks.
|
|
|
|
|
|
The HealthCheck service includes 3 SmartAttacks
|
The Bronze service includes 9 SmartAttacks
|
The Silver service includes 16 SmartAattacks
|
The Gold service includes 24 SmartAttacks
|
|
Cross-Site Scripting (1)
Non-SSL Password
Password Auto-Complete
|
Authentication (2)
Non-SSL Password
Cross-Site Scripting (1)
Information Leaks (4)
Credit Card Disclosure
Form Caching
HTML & JavaScript Comments
Non-SSL Form
SQL Injection (1)
SQL Error Message
Web Server Configuration (1)
Web Server Vulnerabilities
|
Authentication (2)
Non-SSL Password
Password Auto-Complete
Cross-Site Request Forgery (1) Cross-Site Scripting (1)
Directory Access (1)
Directory Browsing
Information Leaks (5)
Application Exception
Credit Card Disclosure
Form Caching
HTML & JavaScript
Comments Non-SSL Form
Insecure Direct Object Reference
URL in Query
Remote File Inclusion
Insecure Resource Location (1)
File and Directory Discovery
SQL Injection (1)
SQL Error Message
Web Server Configuration (2)
Web Server Vulnerabilities
Check HTTP Methods
|
Authentication (3)
Non-Masked Password
Non-SSL Password
Password Auto-Complete
Cross-Site Request Forgery (1) Cross-Site Scripting (1)
Directory Access (1)
Directory Browsing
Information Leaks (9)
Application Exception
Basic Auth over HTTP
Browse HTTP from HTTPS
Credit Card Disclosure
Form Caching
Form Submitted Without Using POST
HTML & JavaScript Comments
Non-SSL Form
Username or Password in HTTP Request
Input Validation (1)
HTTP Response Splitting
Insecure Direct Object Reference
URL in Query
Remote File Inclusion
Insecure Resource Location (1) File and Directory Discovery
Session Management (1)
J2EE Session ID Length
SQL Injection (1)
SQL Error Message
Unvalidated Redirects and Forwards (1)
Web Server Configuration (2)
Web Server Vulnerabilities
Check HTTP Methods
|
