When a Pine Software Security Audit is executed, a website or program is checked for security risks. The audit comprehends a detailed check of the source code for possible security errors resulting in a report which is delivered to the customer.

The audit of the scripts forms the core of the Pine Software Security Audit. The scripts are checked for common and less common security mistakes related to specific programming languages such as JavaScript, Perl, PHP, ASP, and C.

The audit of the source code usually starts with a check for common mistakes, such as the use of un-initialized variables in PHP, missing or wrong quotation in SQL statements, or improper user input validation. After these checks, the scripts are audited for problems specific to the website as a whole. This concerns the identification of configuration errors and unexpected interaction between different scripts.

The impact of each of the detected security vulnerabilities is subsequently analyzed. The impact of a vulnerability can vary depending on the underlying software and the security awareness of the system administrators.

For example, specific database software may allow for easy remote access on the web server and some system administrators may leave behind sensitive information in the form of database dumps or history files.

Upon completion of the audit, a comprehensive report is created detailing the vulnerabilities that have been discovered. The report also includes a recommended fix for each of the vulnerabilities, which can be used to secure the website.

Once the report has been completed, Pine will present its findings to you at your office. The Pine representative will take the time necessary to ensure that you will not be left with any unanswered questions. The Website Security Audit report will be then handed over to you.

Pine can also perform the Software Security Audit for you on a recurring basis, in which case we can offer you an interesting discount on the price per audit.

Like with all other information that Pine handles for its customers, all information obtained from your organization, as well as the Software Security Audit report will be treated as strictly confidential.

If you wish to receive more information about the Pine Software Security Audit, use the "Contact" button below to submit your contact information and we will contact you as soon as possible.