Web application security audit

Around 72% of Lithuanian small and medium-sized enterprises (SME) stated that they do not know how to assess cyber security vulnerabilities and risks.

Contact Learn more

Data protection

Have you heard of CityBee, Darni Pora, LIEMSIS, Kilobaitas, and other data leaks in Lithuania? This threat exists for all businesses that work with customer data. If not enough attention is paid to cyber security, then the likelihood of hacking increases, along with the use of services. How to do it? Let’s start with assessing vulnerabilities and threats of your web app. We offer automated testing with Acunetix for free, and we will provide a summary and insights on what to do next.

Awarness

According to our data, there are over 15,000 websites in Lithuania that use WordPress systems, of which 80% are out of date. Starting from blogs, representatives to e-commerce sites. Abandoned sites are easy prey for hackers. They could embed malicious code on a vulnerable website and its visitors would act as a catalyst. After all, you wouldn't want to get a DDoS attack just because someone didn't take care of cyber hygiene, would you? 3 out of 4 executives agreed that it was important for them that their business partners adhere to cyber security standards (kurklt, 2020).

Innovation

Almost half (48%) of SME managers agreed that the existing cyber security measures are too expensive (kurklt.lt, 2020). In our opinion, Acunetix and Netsparker are very good automated testing tools, but we find that only large organizations choose these tools. We are looking for innovative ways to reduce the cost of security testing and offer the highest quality of service.

Test Cases

Usually, we start with the black box and automatic testing. Manual testing we use after it. There may be black or white box methods.

Automatic testing

We use one of the best tools on the market - Acunetix. It has state-of-the-art vulnerability detection technology and constantly updated vulnerabilities. At this moment, it has a database with over 7000 vulnerability checks.

Manual testing

We use the Burp Suite Pro tool and the OWASP Top 10 methodology. We check places where a user can send data.Also, those queries that returned errors during automated testing.

Price of services

Automatic test
0 EUR
  • Detailed report
  • Recommendations
  • Testing audit
  • Unlimited number of domains
  • Summary of vulnerabilities
Consultation
69 EUR/h.
  • Detailed report
  • Recommendations
  • Testing audit
  • Unlimited number of domains
Program for Partners
420 EUR/month.
  • Detailed report
  • Recommendations
  • Testing audit
  • Unlimited number of domains
Automatic testing

Automated testing is the simplest form of vulnerability assessment. Usually, it takes an hour to scan the web app, and after we will provide a summary and our recommendations on what to do next. This service costs you nothing. We recommend scanning the web application on every release of a new feature, or monthly.

Consultation

The goal of a consultation is to provide recommendations on how to fix flaws and mitigate potential risks. After the automated scan, if we find any high or medium-intolerable risks, we create a vulnerability assessment report and schedule an appointment for a consultation. The cost of a consultation per hour is 69 EUR.

Program for partners

Perhaps not everyone today has the opportunity to purchase the Acunetix tool. One reason is the price for the license, and the other is a two-year contract. However, by becoming our partner, we will help you assess the security of your web apps. We will scan and send you the vulnerability assessment reports one by one for 420 EUR per month.

About us

Tomas Savėnas

Web application security technology specialist and consultant.

Eimantas Rebždys

IT security specialist and lecturer.

Hermitage Solution

Acunetix is ​​powered by Invicti.

Portswigger

Burp Suite Pro.