Penetration test for multinational content creation platform
In this case study, we examined a multinational content creation platform, whose developers approached our team of GIAC professionals to perform a second-stage, grey-box penetration test against the authentication of their complex web application. This engagement differed from previous assessments with the same client as they provided credentials to the application. Providing credentials enhanced the depth and coverage of the engagement versus an unauthenticated assessment, which may have burned a significant amount of time in not gaining deeper access to the applications in the event of there being no findings - ultimately not providing value to the client. This was clearly reflected in the report and the quality of findings uncovered.
Read more