Services

Trusted Advisor Services

Penetration Testing

Penetration testing involves performing a "friendly" attack against your web-site or application, simulating what an actual attacker would see and do. Penetration can be highly effective in detecting a wide range of security vulnerabilities, including cross-site scripting, information disclosure, broken authentication, and authorization bypass. Learn more...

Code Review

A security-oriented code review requires some level of analysis to be performed on the application source code. This usually takes the form of automated tools followed by a manual review of critical sections, such as authentication and authorization modules. Trusted Advisor Security offers a cost-effective approach to code reviews, leveraging our own static analysis tool, Yasca, custom rules, and manual analysis. Learn more...

Vulnerability Remediation

When problems are found, Trusted Advisor Security can help you remediate vulnerabilities, whether they require configuration files to be modified or code changes to be applied. We can work with your development staff to ensure that any modifications made will completely fix the vulnerability and to develop test cases to ensure that vulnerabilities are not re-introduced into later code builds. Learn more....

Architectural Analysis

Security defects introduced during system design can be critical and very expensive to remediate. Trusted Advisor Security offers an architectural analysis service that clients can leverage to ensure that new and modified functionality does not introduce security defects. Trusted Advisor Security will offer our expert advise to your development staff to ensure that the application design meets security best practices and does not lead to vulnerabilities being introduced later in the lifecycle. Architectural analysis can be among the most cost-effective security activity for large, complex, and critical projects. Learn more....