Code analysis of Web sites/applications
Technical test that aims to perform a security assessment of the static code of WEB applications, identifying weaknesses and recommending mitigation measures. This test helps organizations validate that developers of the web applications under reach are applying secure development techniques and also to validate that there are no code-level vulnerabilities in the applications.
Why is it important
A good code development limits the interaction that the user has with any web page by restricting the access they have to the data, allowing only that they can access what they are allowed. It is important to verify these good practices using different code scanning tools, to corrode a good development culture, where the top 10 security risks of web applications, better known as OWASP Top 10, are also used.