New Zealand - Security-Assessment.com - Web Application Testing, Network Security, Penetration Testing

Security-Assessment.com is a New Zealand based world leader in web application testing, network security and penetration testing.

Advise - Assess - Assure

Company

Services

Advisories

Publications

Events

News Room

Resources

dailyinfosec - Security News

@Risk Newsletter

Top 20 Vulnerabilities

Vulnerability Knowledgebase

Security-Assessment.com
New Zealand

Tel.:	+ 64 9 302 5093
Fax.:	+ 64 9 356 5698

e-mail: nz@security-assessment.com

Leading Services

Network Security

Web Application Testing and Penetration Testing

A Security-Assessment.com network security test will show our clients where they are vulnerable and provide a prioritised, risk based recommendation to improve the security of the systems under review.

Our approach typically includes a combination of configuration assessments, automated network scans and manual penetration attempts.

More Information

Web application test and penetration test are a requirement for meeting regulations such as PCI DSS, SOX and HIPAA.

It is also defined in industry standards such as ISO 17799 and ISO 27001 as important security audits that organisations should undergo regularly.

More Information

PCI DSS Compliance

Vulnerability Assessment

Security-Assessment.com is a qualified PCI Security Assessor.

We provide our clients with the full suite of PCI DSS Compliance services - from compliance advisory, quarterly scanning, yearly audits to payment application reviews.

More Information

Proactive vulnerability assessment and management is the most effective approach to detecting vulnerabilities in your network environment.

Patching has its place but you cannot rely on just patching. It won't cover "weak" builds and mis-configured systems. Firewalls and IDS/IPS won't stop fast moving new worms and other malicious exploit code.

More Information

Research & Development

Other Services

Security-Assessment.com is one of the world's leading IT Security research and development companies.

Our expertise is used by many of the world's leading companies, IT vendors, government agencies and the wider IT Security community.

More Information

• Enterprise Security Assessments
• Security Management Systems
• Application Assurance
• Network Architecture Reviews
• Compliance Reviews (ISO27001/17799, SOX, PCI)
• ACSI 33 and I-RAP Assessments
• VOIP, Wireless and SCADA tests
• Mobile Technologies and more...

More Information

News Highlights

Paul Craig to present at OWASP NZ Day

Dean Carter to present at OWASP NZ Day

Nick Freeman and Roberto Suggi Liverani to present at OWASP NZ Day

Nick Freeman and Roberto Suggi Liverani to present at DEFCON 17

Muhaimin Dzulfakar to present at DEFCON 17

Nick Freeman and Roberto Suggi Liverani to present at EuSecWest 2009

Paul Craig to present at Shakacon III

Security-Assessment.com proudly sponsors OWASP New Zealand Day 2009 as a Gold sponsor

Carl Purvis and Dean Carter to present at Brightstar 14th Annual Information & IT Security Summit

SA Advisories

Google Analytics Stored Cross Site Scripting

Opera Stored Cross Site Scripting

Multiple Flash Authoring Heap Overflows

Acrobat Distiller Malformed "joboptions" File

SugarCRM Local File Disclosure

Cart32 Arbitrary File Download

Multiple .NET Null Byte Injection Vulnerabilities

Latest Publications

Ruxcon 08 - None More Black - The Dark Side of SEO

Kiwicon 08 - Black SEO Exposed

Kiwicon 08 - Bugging The Board Room

Kiwicon 08 - Phree As In Phone Call

Kiwicon 08 - The Moth Trojan

Kiwicon 08 - Waste Not, Want Not

BlackHat EU 08 - Crackstation

Upcoming Events

July 13th 2009
OWASP New Zealand Day 2009