Applications
Rich client applications
Examination of desktop applications (C#, .NET and other programming languages) for misconfigurations and vulnerabilities.
APT Simulation, MITRE ATT&CK
Do you have questions about your selection or are you unsure? Please feel free to contact us!
Examination of desktop applications (C#, .NET and other programming languages) for misconfigurations and vulnerabilities.
Our experts test your desktop application for typical vulnerabilities in configuration management, communication with backend systems and in the source code in general. The test can be conducted on premises or remotely.
Exemplary test objects:
Desktop application in a 2-tier architecture consisting of the client side (front end, rich client application) and the server side (back end, database).
Desktop application in a 3-tier architecture consisting of the client side (frontend, rich client application), the application logic (middleware, API) and the server side (backend, database).
In 39% of cases attackers can gain unauthorized application access. ¹
16% of all systems can be fully compromised. ¹
The penetration test presented here includes a comprehensive security analysis of your rich client application at the network and application level.
For the pentest, you provide us with access to a VDI/VM or a client device on which the desktop application is already be installed and usable. Alternatively, if technical feasable, you provide us with the installer binary and all necessary configuration files to run the rich client on our own hardware/infrastructure.
From the perspective of an attacker with access to the desktop application, we examine the application for typical misconfigurations and vulnerabilities in the following areas:
During the penetration test, we check the entire lifecycle of your desktop application, from installation on the client side to communication with an API middleware and the backend systems.