Confirmation & Quality |
For the given scope, a specialized pentest (white box code audit) was performed. The source code of the application was analyzed using automated software and manual inspection. Particularly critical code segments that handle authentication / authorization or user input were thoroughly analyzed for any possible risk or exploitation path. All tasks were performed by consultants holding at least the OSEP and OSED certifications. More information about these certifications can be found at the following links.
OffSec Certified Professional | OffSec Exploit Developer
|