Penetration Testing  

Rysc Corp. specializes in application security and conducts security testing of custom applications and COTS products. Consultants leverage a combination of manual and automated testing techniques to provide a comprehensive security evaluation that is both broad and deep. Our areas of expertise include web applications, native Windows™ applications, mobile & embedded applications.

Rysc Corp.'s methodology addresses a broad set of security control families including authentication, authorization, cryptography, communications security, data security, data validation, business logic, session management, denial of service, and information leakage.

 
 
 

Assessment Process

Rysc Corp. values client privacy and confidentiality, services are rendered with the utmost discretion. All assessments result in a report detailing the vulnerabilities identified along with recommendations, prioritization by risk, steps to reproduce the vulnerability, reference information and visual aids.

1
Analysis & Testing
Analysis

Leveraging manual and automated testing techniques, Senior consultants identify common vulnerabilities in your application / product including: buffer overflows, integer overflows, format string vulnerabilities, SQL injection, file inclusion, business logic flaws and more.

2
Reporting
Reporting

Each finding is documented in detail such that a developer can reproduce the condition with clear recommendations on how the problem can be fixed. We are also happy to integrate with existing QA reporting mechanisms such as issue tracking software.

3
Verification
Verification

Once your developers have corrected the issues identified, consultants re-test the application to ensure that their recommendations have been implemented correctly.

 
Copyright © 2008-2013 Rysc Corp.   sales@ryscc.com   +1 888 828 8497