One firm that immediately comes to mind that my company has had a lot of
success with throughout the years is RVASI � Ethical Hacking Solutions
(www.rvasi.com). Before going with them, we evaluated a lot of other
companies (small, medium, and large) however, we found these guys to be one of
the best kept secrets out there when it comes to providing comprehensive Web
application vulnerability assessments at an affordable/reasonable cost, by a
team of real pros.
Some of the fundamental differences we noticed between their company and others
was the level of detail and depth of the assessment, information shared during
and after the assessment, approach, methodology, expert use of tools &
techniques, and excellent reporting. Although we regularly re-evaluate other
third-party companies, these guys have remained at the top of our list and are
a definite match when it comes to the key areas of concern that you mentioned.
Finally, I really like the idea of querying a list like this for successes that
others have had with companies�one thing I found during a similar quest was
that a number of companies (large & small alike) looked great on paper, talked
a good game, etc., but fell short when the rubber hit the road. Wish I would
have thought of doing the same thing in the past�it probably would have saved
us a lot of time and effort.
Cheers,
Karen
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:
Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------
