SAIT
SAIT
Log in Sign up

Security & Penetration Testing of Web Application

Open
PrimeVisionTech
PrimeVisionTech
Toronto, Ontario, Canada
Zaid Asmal
Zaid Asmal
He / Him
Founder / CEO
(6)
5
Project
Academic experience or paid work
55 hours of work total
Learner
Anywhere
Beginner level

Project scope

Categories
Website development Security (cybersecurity and IT security) Information technology Databases Networking
Skills
presentations ethical hacking penetration testing nmap nessus preparing executive summaries open web application security project (owasp) vulnerability research non-disclosure agreement (intellectual property law)
Details

A standard practice for web based tools is to conduct what is known as penetration tests at least once a year. This is a white-hat hacking approach in which a firm is given special permission to try and break into, exploit, or otherwise attempt to break a given product via security vulnerabilities.

  • First, we would like students to get familiar with our product. Sign up, play around with it, understand generally how it works.
  • Second, students should spend time conducting research on state of the art pen testing technologies. They should look into common vulnerability lists such as OWASP Top 10, and common security tools such as Nmap, Burp Suitar, Nessus, and Wireshark.
  • Third, students should have a written attack plan and present it to us so we can confirm we understand what the test will do and what might be uncovered.
  • Fourth, students are free to attack our product as per the presented plan
Deliverables

Before testing begins, students should present a testing plan to us. This should include tools they will use, techniques for exploration, what categorical vectors of attack will they go after, and any other information they feel like they need to present. This should be presented to us via a small slide deck or other means.

After testing is complete, the final deliverable should be a written report detailing how the test was conducted, what tests passed, what tests failed, recommendations for mitigation strategies, and any further notes from the testers. Other items to consider for a final report should be:

  • An executive summary detailing overview, timeline, key findings
  • Categorizing all findings into vulnerability levels such as critical, high, medium, low
  • High detailed summaries of any findings
  • Low detailed summaries of any tests conducted with no findings
  • A recap of any tools used


Final Deliverables:

Provide details about what the student will upload to the platform as their final deliverable(s).

  • [Deliverable 1 with details]
  • [Deliverable 2 with details]
  • [Deliverable 3 with details]

For students: To validate the completion of your work, please submit deliverables as uploaded files with a reflection note at the end of your project. These files can take various formats, including Word documents, PDFs, JPEG images, presentations, and more. We request tangible proof or an example showcasing your completed work. If the project involved an Non-Disclosure Agreement (NDA), please provide redacted deliverables or a sample of non-confidential work.

Mentorship
Domain expertise and knowledge

Providing specialized, in-depth knowledge and general industry insights for a comprehensive understanding.

Skills, knowledge and expertise

Sharing knowledge in specific technical skills, techniques, methodologies required for the project.

Hands-on support

Direct involvement in project tasks, offering guidance, and demonstrating techniques.

About the company

Company
https://Primevisiontech.com
Toronto, Ontario, Canada
2 - 10 employees
Science, Sports & fitness, Technology

PrimeVisonTech is a leading technology company specializing in custom software development and digital solutions. As the founder of 247 Labs, our mission is to empower businesses and organizations with cutting-edge technology solutions that drive innovation, enhance efficiency, and deliver exceptional results. With a team of highly skilled professionals and a wealth of experience, we offer a comprehensive range of services including web and mobile app development, cloud solutions, user experience (UX) design, e-commerce development, and digital strategy consulting.

At 247 Labs, we understand that each client has unique needs and goals. Our approach revolves around close collaboration and understanding your business requirements to develop tailored solutions that align with your vision and objectives. We leverage the latest technologies and industry best practices to deliver robust, scalable, and secure solutions that exceed expectations. Our agile development process ensures transparency, flexibility, and timely delivery, while our commitment to quality ensures that every solution we create is of the highest standard.

What sets us apart is our relentless focus on customer satisfaction. We prioritize building long-term partnerships with our clients and strive to become their trusted technology partner. Our team is dedicated to providing exceptional customer service, effective communication, and ongoing support throughout the project lifecycle and beyond.