Application Security

Web based applications are becoming the norm for many organisations doing business today. Whether you are a Financial Institution offering banking services, a Government Department offering payment options, or within the Education industry offering various online student functions, your web-based applications are constantly under attack from various security threats today.

For this reason, it is paramount that your application code, whether it is commercial-off-the-shelf (COTS) or developed in-house, is reviewed to provide assurance that your applications are not providing a “front door” into your organisation. This is why so many organisations are turning to eSecure for cost-effective software assurance services.

eSecure perform four types of source code assurance services:
- A full source code review
- A review of the source code based on important security functions (authentication, authorisation, integrity and
  confidentiality)
- Review of possible vulnerable functions – example financial transactions, upload, download functions
- Reverse Engineer application to pseudo code then perform security review.

As full source code reviews and reverse engineering code are very time-intensive tasks, we typically recommend using a combination of Application Penetration Testing in conjunction with reviewing certain areas of the source code. This combination tends to result in the most cost effective review of an application.

Our language capability covers over 90% of the world’s most popular languages. This is based on results from the TIOBE index, Dice.com index, Evans Data studies and Computerworld studies.