Security & Penetration Testing of Web Application

Closed
SP Global Inc
Toronto, Ontario, Canada
Dilavar Hussain
Director
(10)
3
Project
Academic experience
100 hours per learner
Learner
Canada
Advanced level

Project scope

Categories
Website development Security (cybersecurity and IT security) Information technology Databases Networking
Skills
nmap penetration testing nessus preparing executive summaries open web application security project (owasp) vulnerability research
Details

Our company has a website / technology product. A standard practice for web based tools is to conduct what is known as penetration tests.

We would like a group of students to design and perform a pen test on our application, involving:

  1. Students become familiar with our product and understand generally how it works.
  2. Students should spend time conducting research on state of the art pen testing technologies. They should look into common vulnerability lists such as OWASP Top 10, and common security tools such as Nmap, Burp Suitar, Nessus, and Wireshark.
  3. Students are free to attack our product as per the presented plan.
  4. Students submit a final report of any findings.
Deliverables

First, before testing begins, students should present a testing plan to us. This should include tools they will use, techniques for exploitation, what categorical vectors of attack will they go after, and any other information they feel like they need to present. This should be presented to us via a small slide deck or other means.

After testing is complete, the final deliverable should be a written report detailing how the test was conducted, what tests passed, what tests failed, recommendations for mitigation strategies, and any further notes from the testers. Other items to consider for a final report should be:

  • An executive summary detailing overview, timeline, key findings.
  • Categorizing all findings into vulnerability levels such as critical, high, medium, low.
  • High detailed summaries of any findings.
Mentorship

A walk through of the product, as well as lighter technical details of it will be provided to students before they begin testing.

About the company

Company
Toronto, Ontario, Canada
2 - 10 employees
Business services, Construction, engineering & trades, Hospital, health, wellness & medical

Helping pharmaceutical manufacturers and biotech firms grow and evolve in an emerging market and trading medical equipment and medicine across the world.