Name: Cyber Security Services
Brand: CYNANCE
SKU: CYNANCE
Price: 1000 GBP
Availability: LimitedAvailability
Rating: 5 (1854 reviews)

SOFTWARE SECURITY TESTING

Attack your applications to test for flaws and weaknesses.

Penetration testing (or pentest) is a test of the effectiveness of your existing application security features. Our experienced application security consulting experts imitate the methods used by real-life attackers to test your defenses and identify vulnerabilities.

Web Applications Testing

Testing programs delivered over the Internet, accessed via a web browser, including APIs.

Mobile Applications Testing

Testing Android/ iOS native apps that run on mobile devices.

Products Penetration Testing

Testing software products installed on user’s computers, both off-the-shelf and self-developed.

Manage your application security risks and protect your business with Cynance

We help our clients to see the big picture and help them to secure their company, not just their applications. We work with you to implement smart security practices according to your business needs, limitations, and budget.

When you should carry out pen tests

Required by Clients

When requested by a client or business partner as part of the set up of a new business opportunity.

New Version/ Users

Before publishing new application versions, features, functionalities, upgrades to an existing application or introducing an application to a large number of users.

Periodic Testing

Carry out regular penetration testing as set out in your company's information security policy.

Compliance

As a requirement of the security framework that you want to comply with, such as ISO 27001, SOC2 and others, or as a preparation for a third-party audit.

Testing Approaches

We carry out penetration tests on the following programs and platforms:

Black Box

The tester tests the application with no prior knowledge. They may be given the name of the company and the domains in the scope. This strategy imitates real-life hacking attempts of malicious actors.

White Box

The tester is given full information about the target applications. This information includes the application source code, application designs, and other documentation. This strategy is the most comprehensive testing approach.

Grey Box

The tester is given partial knowledge of the applications’ internal structure, technologies, and business logic. This approach speeds up the test process since it provides some understanding regarding the company’s assets and potential attack vectors, but also maintains an element of obscurity.

Stealth Mode

This testing approach leaves minimal traces and artifacts behind, giving a true test of your detection, alerting, and purpose-related capabilities.

Quick & Dirty

This testing approach utilises automated tools to perform relatively quick assessments on large scope and low risk applications and systems, in a constrained time frame or budget.

How we engage with you

Preparation

Define the scope of work, areas of concern, goals, and objectives of the project.

Assessment

Carry out the assessment according to the defined scope.

Reporting

Provide you with a comprehensive report describing findings, and recommended initiatives for improvement.

Presentation

Present the findings to your team and suggest future remediation steps.

Ongoing Support

Support you in addressing the recommendations of the report.

Executive Summary

A summary of the security vulnerabilities of the tested applications.

Detailed Reporting

A technical report listing the security vulnerabilities for each tested application.

Remediation Proposals

Detailed initiatives to enhance your application security.

“Cynance gave us an ‘X-ray vision’ across our entire corporate security posture, reviewing our organisation from an adversary point of you.”

Head of IT

Global business events company

TALK TO A CONSULTANT

Our experts are on hand to help you protect your business.

Learn more about our services and speak to us today about how we can help you keep your business safe and secure.

Cookie	Duration	Description
_GRECAPTCHA	5 months 27 days	This cookie is set by Google. In addition to certain standard Google cookies, reCAPTCHA sets a necessary cookie (_GRECAPTCHA) when executed for the purpose of providing its risk analysis.
cookielawinfo-checkbox-advertisement	1 year	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Advertisement".
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
elementor	never	This cookie is used by the website's WordPress theme. It allows the website owner to implement or change the website's content in real-time.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
_ga	2 years	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_gat_UA-176747747-1	1 minute	This is a pattern type cookie set by Google Analytics, where the pattern element on the name contains the unique identity number of the account or website it relates to. It appears to be a variation of the _gat cookie which is used to limit the amount of data recorded by Google on high traffic volume websites.
_gid	1 day	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visted in an anonymous form.
CONSENT	16 years 5 months	These cookies are set via embedded youtube-videos. They register anonymous statistical data on for example how many times the video is displayed and what settings are used for playback.No sensitive data is collected unless you log in to your google account, in that case your choices are linked with your account, for example if you click “like” on a video.

Cookie	Duration	Description
IDE	1 year 24 days	Used by Google DoubleClick and stores information about how the user uses the website and any other advertisement before visiting the website. This is used to present users with ads that are relevant to them according to the user profile.
test_cookie	15 minutes	This cookie is set by doubleclick.net. The purpose of the cookie is to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	This cookie is set by Youtube. Used to track the information of the embedded YouTube videos on a website.
YSC	session	This cookies is set by Youtube and is used to track the views of embedded videos.

Penetration Testing