Web App Penetration Testing for a Learning Software Provider

Industry

Education

Technologies

.NET, Frontend (JS, HTML, CSS), Cloud, Azure

About

The Customer is a European company with over 20 years of experience in developing, supporting and maintaining software products for knowledge and learning content management. Their clients mostly operate in education, finance, healthcare, retail and other domains.

Challenge

The Customer needed to evaluate the security level of their LCMS web app that they provided to their clients as SaaS. It was necessary that the app stayed highly secure and ensured the protection of the sensitive information of Customer clients. Since VolgoTechnologies proved to be a trusted partner during four years of the previous collaboration with the Customer, they turned to VolgoTechnologies to get penetration testing services.

Solution

VolgoTechnologies security engineers performed penetration testing according to the black box model (simulating the actions of a real attacker with strictly limited knowledge of the network). The security testing team used testing tools compliant with the ethical hacking methodology.

During the penetration testing, VolgoTechnologies security testing team identified four vulnerabilities of the Customer web application. The security engineers classified them according to their severity, reflecting the risk for the business processes of the Customer clients

Staging

Datawarehouse

Dataware House

Desktop Application

Results

VolgoTechnologies security engineers provided the Customer with the assessment of the security level of the LCMS web application. Penetration testing allowed identifying several vulnerabilities in the Customer web application. The Customer got the list of corrective measures aimed at eliminating the discovered security weaknesses in the LCMS web application and increasing the web app protection level. The Customer was satisfied with the work of VolgoTechnologies security engineers and expressed their intention to continue collaboration with VolgoTechnologies as a trusted provider of penetration testing services.

Technologies and Tools

Metasploit, Nmap, SQLMap, Nikto, DIRB, Burp Suite, Nessus, ZMap

Web App Penetration Testing for a Learning Software Provider

Industry

Technologies

About

The Customer is a European company with over 20 years of experience in developing, supporting and maintaining software products for knowledge and learning content management. Their clients mostly operate in education, finance, healthcare, retail and other domains.

Challenge

Solution

Staging

Datawarehouse

Dataware House

Desktop Application

Results

Technologies and Tools

Bridging The Gap Between Business And Technology

Follow us

Solutions

IT-Services

Web App Penetration Testing for a Learning Software Provider

Industry

Technologies

About The Customer is a European company with over 20 years of experience in developing, supporting and maintaining software products for knowledge and learning content management. Their clients mostly operate in education, finance, healthcare, retail and other domains.

Challenge

Solution

Staging

Datawarehouse

Dataware House

Desktop Application

Results

Technologies and Tools

About

The Customer is a European company with over 20 years of experience in developing, supporting and maintaining software products for knowledge and learning content management. Their clients mostly operate in education, finance, healthcare, retail and other domains.