How a non-profit organisation ensured its continued security with Web App Penetration Testing
Non-Profit Organisation
Case Study
The Requirement
With its website being such a central hub to the service that the non-profit organisation provides and the community it serves, it wanted to ensure that everything was secure and pick up on any issues that developers may have missed or may have occurred through updates and patching.
To learn more, read the full case study.
“Another good service from DigitalXRAID!
The process and communication were very smooth. I appreciated being able to speak directly with the pen tester to be able to resolve any technical questions or issues quickly.
I would have no hesitation in recommending DigitalXRAID’s services.”
The non-profit organisation engaged DigitalXRAID to perform the Web Application Penetration Test to identify any security weaknesses and potential exploitable vulnerabilities.
As a first step, DigitalXRAID’s penetration testing consultants assisted the non-profit organisation with effectively scoping the web app pen test. This was to ensure that maximum value would be achieved during the testing time.
DigitalXRAID delivered a thorough Web Application Penetration Testing Service over several days, conducteding comprehensive tests which assessed the web app from an unauthenticated and authenticated perspective, and determined whether the web app could be compromised.
DigitalXRAID used various tools and techniques as part of the penetration test, in line with industry best practice. Testing is performed using an advanced testing methodology which is comprised of years of experience and aligned closely with Open Web Application Security Project (OWASP) and Open Source Security Testing Methodology Manual (OSSTMM) and other industry standards.
At the end of the testing period, DigitalXRAID supplied a comprehensive report, detailing the methodologies followed and highlighting and categorising any vulnerabilities found into low, medium, high and critical priorities. The report included a risk summary that explained how any vulnerabilities identified could be used by an attacker to affect the business.
To learn more about the full pen testing solution, read the full case study.
The Results
With updates performed this year there was a low issue and a high criticality issue that was picked up. With those identified in the pen test, the non-profit organisation has been able to shore up security to ensure that there are no exploitable vulnerabilities in the web application.
The company is confident that it is currently guarded against active threats from cyber criminals.
With regular penetration testing being a key part of the non-profit organisation’s security posture, its customers have full assurance that they are also protected, and that the organisation will continue to provide a secure service.
If you would like more information on our managed service for penetration testing, get in touch with our team of experts today.
Cyber Security Experts
Accredited and regulated, we're in the top 1% of cyber security agencies globally
We’re trusted by the UK Government as Crown Commercial Service providers as well as being accredited by two of the leading cyber security governing bodies. Our ISO9001 certification means you can rest assured our processes and approach are market leading.
Protect Your Business & Your Reputation.
With a continued focus on security, you can rest assured that breaches and exploits won't be holding you back.
