Cantonal Administration
27/04/2020
Penetration test and partial code review of a login application for e-banking
For reasons of discretion, we do not list the names of our clients. However, we will be pleased to provide references and letters of recommendation following consultation with the organizations concerned.
Penetration test and partial code review of a login application for e-banking
Presentation on the current cyber threats to which the cantonal IT departments are exposed. The central aim of this presentation was to show the IT responsibles the current cyber risks and to present new ideas and solutions for tackling these risks
Mobile application penetration test of an e-banking app incl. code review with focus on the local security of the apps
IT Security Health Check, which documents the current state of organisational and technical information security and thus enables a rapid all-round view. Quantitative and qualitative evaluation of the implementation of normative information security measures according to ISO 27002 as well as a security scan of the internal network
Penetration test of two APIs from the banking industry as well as code review of the security-relevant sections in the corresponding source code
Security check of the company IT by means of vulnerability scans from external over the internet and from internal in the server network, as well as an audit of the processes according to ISO 27002
Penetration test of a Bluetooth low-energy connection in an IoT environment. Possibilities to manipulate, interrupt or take over the connection were examined
Penetration test of a jump link between two applications, including authorization
Web Application Penetration Test of the REST APIs of the client’s ArcGIS instance
Workshop on IT security topics (network segmentation, firewall, WAF, PKI, Office365, Azure)
Partial code review and penetration test of an AEOI data exchange solution
Comprehensive penetration test including wardriving, WLAN audit and Red Teaming; The network infrastructure was examined by means of a remote and internal security scan, a Wardriving and WLAN-Audit at one location and a Red Teaming
Accompanying the development of a web portal for insurance customers and marketers by means of regular code reviews, web application penetration tests and penetration tests of the infrastructure
Secure web development training and draft of a coding guideline for internal developers
No results found.
Don’t miss anything! Subscribe to our free newsletter.
Availability Monday to Friday 8:00 a.m. – 6:00 p.m (exception: customers with SLA – please call the 24/7 IRR emergency number).
Private individuals please contact your trusted IT service provider or the local police station.
For more information about our DFIR services here:
