What is AppSec Risk Assessment at Argon Cyber Security?
Our AppSec Risk Assessment is the gold standard for safeguarding web and mobile applications. At Argon, we take security to the next level by conducting in-depth assessments, going well beyond the OWASP Top 10 vulnerabilities. What sets us apart? We employ ASVS (Application Security Verification Standard) Levels 1, 2, and 3 to rigorously scrutinize your applications. But it doesn’t stop there – we’re committed to ensuring you’re aware of the real-world risks. That’s why, after identifying vulnerabilities, we construct threat scenarios that not only explain the findings but also show how attackers could exploit them.
How Does It Work?
- Initial Consultation: We begin by understanding your unique goals and requirements.
- Kick-off meeting: Start of a project, meeting with a team, an application demo.
- ASVS-Powered Testing (SAST & DAST): We apply ASVS Levels 1, 2, and 3 to rigorously evaluate your application’s security.
- Real-World Threat Modeling: We construct scenarios that vividly illustrate how attackers could leverage identified issues.
- Presentation: Before delivering the Detailed Report, we’ll provide a presentation where we walk you through our findings, explaining the vulnerabilities and the associated threat scenarios.
- Detailed Report Delivery: You receive a comprehensive report with actionable remediations for found issues.
Packages
| ASVS 1 | ASVS 2 | ASVS 3 | |
|---|---|---|---|
| Threat Modeling | Standard | Detailed | Detailed |
| Manual Testing | Included | Included | Included |
| Automated Testing | Included | Included | Included |
| Code Analysis | Optional | Included | Included |
| Design Review | None | Included | Included |
| Duration | 5 days | 7-8 days | 10 days |
