Application security (short AppSec) includes all tasks that introduce a secure software development life cycle to development teams. Its final goal is to improve security practices and, through that, to find, fix and preferably prevent security issues within applications. It encompasses the whole application life cycle from requirements analysis, design, implementation, verification as well as maintenance.
Application Security include:
- API Security
- HTTP Sniffing assessment
- Form Authorization assessment
- XSS Assessment
- HTTP Fuzzing Assessment
- SQL injection assessment
- Patch Management
- Database query interface security
- Static Code Analysis
- Secure Code