Code Inspection
How can a company prove it did its due diligence to minimize the occurrence of vulnerabilities? Besides having code quality management policies and mechanisms in place within your company it is a good idea to have fresh eyes look at your code. Whether this is done with the original source code or a compiled binary and combination it is important that a holistic approach be taken. Software is becoming better and better at identifying potential security vulnerabilities but due to rapidly emerging techniques and methodologies it is important to also have a manual approach by a team of hardened experts that know the unique vulnerabilities inherent in each programming language. Through careful analysis both easy and hard to spot vulnerabilities can be uncovered that can then be fixed easily before the finished product ships, saving you time and money.
exo12 has long standing expertise in locating vulnerabilities in various scripting and programming languages and can generate a full and comprehensive report covering amongst others:
- activities performed
- vulnerabilities found
- how the vulnerability works
- how to resolve the vulnerability
- proof of concept code if needed
- proposed environment to use the product in
- any special notes
With long term planning and regular checking of additions to your code base a history of continued foresight and concern for your clients will build and the reports can be used in any legal situation to prove your company did everything it could do to prevent any form of loss for a customer.
Through our quality driven approach we can provide reliable results that are limited only by the amount of information given to do our work. Contact one of our experts to quickly get a better feel for what we can do for you.
