Sacure - Application Code Reviews

05/16/2008
Vuln: libvorbis Multiple Remote Vulnerabilities

05/16/2008
Vuln: Microsoft Windows Kernel Usermode Callback Local Privilege Escalation Vulnerability

05/16/2008
Vuln: rdesktop Multiple Remote Memory Corruption Vulnerabilities

05/16/2008
Vuln: TFTP Server Error Packet Handling Remote Buffer Overflow Vulnerability

05/17/2008
Bugtraq: [ MDVSA-2008:102 ] - Updated libvorbis packages fix vulnerabilities

05/17/2008
Bugtraq: [ MDVSA-2008:101 ] - Updated rdesktop packages fix vulnerabilities

05/17/2008
Bugtraq: [SECURITY] [DSA 1576-2] New openssh packages fix predictable randomness

Sacure - Enterprise Security

Sacure to offer VoIP Security Assessment Services

Sacure offers Security Staffing and Consulting Services

Pen Test Whitepaper

Application Code Reviews

Sacure manually audits client source codes to identify any vulnerabilities, provides comprehensive documentation on the location and nature of each, and advises developers how to remedy and avoid vulnerabilities in the future.

Because software development is an evolutionary process, Sacure recommends the code audit function reflects the structure of the development process, and includes audit checkpoints for every major product stages: alpha, beta, release, etc.

Vulnerable points in the design architecture, such as legacy interoperability, are also examined for design flaws and weaknesses that may result in a compromised design process.

The purpose of performing these code audits is to ensure that:

Your product is properly functioning from a security perspective
Your product is impenetrable to the highest predictable degree
Your product is tested for all foreseeable possibilities of risk.

Sacure consultants are coders with the following expertise:

Embedded applications
Web applications
Enterprise applications
N-tier architecture