Website security analysis
Secure presence on the WWW
Identify dangers, close gaps
Worldwide, 2.5 billion users access almost 700 million websites. Whether it’s an information platform, e-shop or service portal: with a professional website security analysis of your Internet presence, you can make your Internet presence an asset for customers, interested parties, partners and, last but not least, for your company or organisation.
Websites under attack
Web servers are among the most frequently attacked systems on the Internet. No wonder: complex configuration and feature-rich web applications make them vulnerable to security breaches. Moreover, web servers are online day and night. Criminals with different motivations have plenty of time to discover even the smallest vulnerabilities. From “defacement” (redirection to a third-party presence) to the leakage of confidential data to malicious code distribution on your behalf, the range of looming risks extends.
However, detected security gaps can be eliminated in a targeted manner and can no longer be exploited by attacks. Website security analyses are therefore a sustainable investment.
How we secure your web presence
- Systematic review of the presence according to WASC Threat Classification (list of threats for web applications of the Web Application Security Consortium)
- Inclusion of all relevant threats without regard to prevalence or frequency
- Black-box tests (penetration tests) and white-box tests (consideration of function and implementation)
- Efficient approach through tool-supported procedures in combination with manual testing techniques
- Individual analysis reports, presentation by experts on request
Your contact person
Short vita Roman Maczkowsky
Roman Maczkowsky is a certified team leader for audits according to ISO 27001 native as well as on the basis of IT-Grundschutz, also according to the German Energy Industry Act (EnWG) for energy suppliers and operators of critical infrastructures. He is a proven specialist in operational data protection and was, among other things, an employee of the Independent Centre for Data Protection Schleswig-Holstein (ULD) and the Berlin Commissioner for Data Protection and Freedom of Information. Roman Maczkowsky is a BSI-licensed IS auditor and IS consultant and is active as a lecturer in the training of data protection and IT security officers.
We first examine your Internet presence for orientation. If no significant complaints are found, you can withdraw from your analysis order without further obligation.