Automated security scanning is an essential tool in attack surface management, but some types of issues simply can't be found by automation alone.
With Human Assessment, you can simply select a target and our experienced team of penetration testers will audit the application once each quarter to check for issues beyond what the scans can find.
We'll test the login and authentication processes for logic flaws and best practices.
We'll look to ensure that signup requirements and checkout flows are appropriate to business needs.
Password resets are a common location for logic errors. We'll put yours to the test.
We'll verify that session management is securely implemented.
We'll test all user profiles to ensure that access is limited appropriately.
We'll test for other common issues across your applications or network services, like checkout flows and file uploads.
We’re focused on making the process as simple for you as possible, while ensuring your targets are consistently audited by trained professionals.
Your dedicated pentester will kick off their testing once credentials are provided. Issues will be added into your dashboard and can easily be integrated into your existing workflow and tools.
When your quarterly assessment is complete, you'll be able to view a results summary highlighting what was tested in your dashboard. Once you've fixed the identified issues, we'll retest to validate at no extra cost.
Every three months we’ll kick off a new test. We'll also look at additional areas or review new changes. Findings will feed right into your dashboard.