Web application penetration testing services include:
- Recon
- Configuration Management
- Cross-Site Scripting
- Authentication
- SQL and ALL Injection
- Authorization
- Session Management
- Session Security
- Business Logic Flaws
- Flash
- Data_Validation
- Business Logic Flaws
- HTML_5 Old/new
- File & Resources
- Denial of Service
- Web Services
- Client side & Phishing
- xPath & Logging
- Secure coding
- API Security (Rest & Postman) etc
- LDAP_Based
- XML
- CSRF
- Serialization
- Server-Side
- Crypto
- Zero Day Exploits
- Reporting
- OWASP & SANS