WebStorm
Web Application Vulnerability Scanning
On Demand Web Application Vulnerability Scanning to Identify Vulnerabilities in your Custom Web ApplicationsWebStorm is a Software as a Service (SaaS) black-box web application security scanning service. WebStorm can find and report technical and business logic security issues such as SQL injection and Cross Site Scripting as well as find email addresses and that long forgotten about test page.
WebStorm can be used on demand or via scheduled routine to scan web sites and corporate Web based applications for any new vulnerability, such as an SQL injection or cross-scripting, alerting IT managers before it can be exploited by a malicious hacker.
Managed via a menu-driven graphical user interface (GUI), WebStorm can be accessed at any time from any web browser.
Subscription Based Service
WebStorm is a subscription based service. Because the subscription price is based on the number of URLs scanned, network administrators can run as many scans as necessary, whenever required, to identify vulnerabilities and confirm that remedies were successful.
WebStorm delivers preventative on-line security auditing and is uniquely capable of helping organisations ensure total security within the corporate network. Through its non intrusive state of the art scanning and advanced reporting techniques, xStorm enables its customers to secure their networks, comply with industry or governmental regulations and achieve complete peace of mind.
WebStorm Identified Vulnerabilities
WebStorm not only searches for unknown vulnerabilities within your bespoke web application but also searches for known vulnerabilities which are being actively exploited by black hat hackers.
Cross Site Scripting (XSS)
WebStorm uses a variation of different payloads to detect both stored and reflected Cross Site Scripting vulnerabilities whether the vulnerability is in a form, the URL or a Cookie.
SQL injection (SQLi)
SQL Injection can lead to full operating system and network compromise which can be especially devastating to a business. WebStorm detects error based SQL injection by using a variation of different techniques.
Local File Inclusion (LFI)
WebStorm can detect local file inclusion vulnerabilities within your web application no matter what operating system is used.
Information Leakage
Web applications and misconfigured servers often unintentionally leak sensitive information which a attacker can use to further facilitate an attack. WebStorm finds these before the black hat hackers do.
Known Vulnerabilities
As well as finding unknown vulnerabilities within your custom web application, WebStorm also finds vulnerabilities which are already known to the black hat hackers. This list is constantly updated by the RandomStorm internal research team.
Reporting
WebStorm will create a custom report for every scan, the report will include a summary of the scan, management summary, technical summary, in-depth vulnerability analysis and much more. One feature we’re especially proud of the ability to include screenshots of each vulnerability within the report. As far as we know we are the first to include this feature within vulnerability reports.