Customer Login: PassWord: US Toll Free : 1 877 556 6705

TECHNOLOGY

TECHNOLOGY
OUR COMMITMENT TO INNOVATION ENABLES US TO PROVIDE OPTIMAL WEB SITE SECURITY.
GamaSec provides the industry-leading cloud-based (SaaS) solution for identifying web site and web application vulnerabilities. Built from the ground up on a completely different technology backbone than its competitors, GamaSec goes beyond traditional signature-based scanners to find more “real-world” vulnerabilities based on deeper and more granular inspection.
GamaSec incorporates multi-layered threat analysis methods that operate on scanned objects to effectively detect possible malware attack. Heuristic technology is combined with Malicious Content Detection engine providing complete break-down of the malicious web content to provide an innovative Malware detection.
GamaSec scanner explores the entire Web application environment and registers its structure and contents. Then it mimics actual hacking methods to identify and uncover the details of any point that is vulnerable to an attack including:
SQL Injection Attack - Attempt to get the database server to execute arbitrary SQL.
Cross Site Scripting Attack - Attempt to coerce the program to outputting third party Javascript.
Parameter Manipulation Attack - Attempt to manipulate input to application validation and filtering.
Code Injection Attack - Attempt to execute arbitrary code.
Hidden Tag Issues – Attempt to retrieve sensitive information, such as price, hard coded into forms using hidden tags.
The web scanner can be used to discover a wide range of vulnerabilities and, following detection, actually recommends solutions designed to protect the vulnerable data.

Application Vulnerability attacks covered by GamaScan

SQLl Injection Xpath Injection LDAP Injection
Blind SQL Injection CRLF Injection Cookie Manipulation
Installation Path Disclosure Directory Traversal Disclosure Source Code
Net Exception Scrip Language Error Cross-Site Scripting
Command Execution URL Redirection Cross-Frame Scripting
PHP Code Injection Remote File Inclusion Internal IP Disclosure

General Tests covered by GamaScan

Web Servers Directory Enumeration Directory Permissions
Web Server Technologies Directory Indexing Sensitive/Common Files
HTTP Methods Directory Access Third party Application
Backup Files
GamaScan not only identifies the security vulnerabilities and detection of Malware in the customer’s web site, but also recommends the most appropriate solution. The fix or workaround solution is identified & implemented when you need it and not when it's too late!
GamaScan White paper
GamaWare White paper