MENU
  1. Services
  2. Cyber Security
  3. Web Application Security

Targeted attacks on web applications are still increasing. The infiltration of malicious code using weak points, so-called “injection-based attacks” in particular has risen sharply in the last year, closely followed by attacks granting hackers extended access privileges on mobile devices, so-called “privilege escalation attacks”. In order to enable you to secure the applications that drive your business, TÜViT offers penetration tests for web applications tailored to your needs.

 

Our methods

No matter what kind of information you provide (black/grey/white box approach), when performing the tests we use recognized standards and best practices such as OWASP, WASC and the German Federal Office for Information Security (BSI).

The penetration tests are performed as a combination of automated and manual tests, in order to achieve conclusive and high-quality results. This enables our IT security experts to identify specific vulnerabilities of web applications, e.g. SQL injection or cross-site scripting vulnerabilities.

Our services at a glance

  • architecture and design analyses
  • review of coding guidelines and security guidelines
  • penetration tests using the black/gray/white box approach
  • review of web application firewall rulesets
  • optional performance of the SQ best practice certification procedure with the objective of a certificate being issued

Your benefits at a glance

  • leverage the breadth of TÜViT security expertise: with TÜViT, you have as your partner one of the leading experts in the field of cyber security
  • we are certified by the German Federal Office of Information Security (BSI) as an IT security service provider for IS audits, IS consulting, and penetration tests
  • efficient performance of penetration tests using a specially developed test platform, the “Distributed Penetration Platform” (DPP)
  • objective analysis and assessment of the established technical and organizational security measures in the field of web application security
  • definition of your security maturity level on the basis of recognized standards and best practices (e.g. OWASP, WASC, and the German Federal Office of Information Security (BSI))
  • increasing the efficiency and overall security level through derived recommendations for action that are individually tailored to your objectives and requirements
  • fulfilling duties of care in test performance as well as security and compliance requirements

TÜViT empowers companies to build and maintain secure web applications.

Dennis Schröder

Product Manager Cyber Security Services

+49 201 8999-606
Fax: +49 201 8999-666

d.schroeder@tuvit.de

Gerald Krebs

Sales Manager

+49 201 8999-411
Fax: +49 201 8999-666

g.krebs@tuvit.de

Appointment Request

Further services

Cyber Security Check

The cyber security check utilizes a structured guide to provide a standardized procedure for evaluating IT security in your company. With the cyber security check, we offer you an efficient and cost-effective solution to identify potential vulnerabilities.
Read more

Penetration Tests

As an IT security service provider for penetrationtesting we help to identify organizational and technical security vulnerabilities.
Read more
System and Network Security

System and Network Security

The commonest targets of hacker attacks are the IT systems and data networks of companies. In order to detect attacks as early as possible, TÜViT offers penetration tests on system and network levels.
Read more
Advanced Persistent Threats

Advanced Persistent Threats

Advanced Persistent Threats (APTs) are highly developed and targeted attacks that operate covertly in order to leave no visible traces. TÜViT offers various modules to prevent Advanced Persistent Threats.
Read more
Enhanced Security Services

Enhanced Security Services

TÜViT offers Enhanced Security Services, to keep your IT security level high at all times: from monitoring and retesting up to Red-Teaming.
Read more

Mobile Security

TÜViT mobile-specific testing approach offers optimal protection for your mobile data. From the analysis of mobile strategy and evaluation of IT infrastructure including mobile device management systems, through to application testing.
Read more
Industrial Security

Industrial Security

In the context of the Internet of Things (IoT), the networking of systems for process control, production and automation is increasing dramatically. As a result, challenges are also increasing in relation to security. TÜViT offers security checks and penetration tests in order to reduce security vulnerabilities in your production infrastructure.
Read more
SQ Best Practice Certification Procedure

SQ Best Practice Certification Procedure

With its Security Qualification (SQ), TÜViT offers a standardized and flexible certification procedure that allows the integrated analysis of products and networked system solutions.
Read more
In order to provide you with a pleasant online experience, we use cookies on our website. By expressing your consent at tuev-nord.de you agree to the use of cookies. Further information, e.g. how you can object to the use of cookies at any time, can be found in our cookie guidelines and data protection settings.