Network Security
Application Security
Wireless Security
Code Review
Social Engineering

Code Review

Design errors and application code vulnerabilities can create serious risks for any organization. The sophistication of tools and attack methodologies exposes information, applications and developers to an exhaustive list of potential vulnerabilities and attack scenarios.

Our engineers work closely with your development teams and key business application owners to test code and identify vulnerabilities. Software development is an iterative process and requires that independent application code reviews be incorporated into your security development lifecycle at critical audit checkpoints. A secure code review scrutinizes your organization’s application code and other forms of customized code for accidental security vulnerabilities and deliberate application backdoors like the ones listed below:

  • Dynamic content creation issues
  • Improper buffer checking
  • Unexpected failure conditions
  • Improper cryptography
  • Input validation
  • Secure code signing
  • Unintended operation
  • SQL injection
  • Command redirection
  • Insecure automatic data inclusion


By leveraging our team’s expert human analyses with the most advanced testing tools, we can conduct detailed inspections of application code and assess the vulnerability of the code set. The combination of manual review and best-of-breed automated tools ensures that your organization receives actionable information specific to the application that is being tested.

Open Web Application Security Project (OWASP) and review applications validate the known vulnerabilities published by the OWASP. The following is a list of current technologies supported by our code assessment team:

supported code

Recommendations for remediating uncovered security gaps and associated risks will be provided in our comprehensive report. The report will detail the specific areas of application code that need to be replaced or altered in order to maintain a secure system. Our application code review provides detailed documentation of each finding, including guidance for the immediate resolution and long-term development of risk treatments.