SoftProtect.fr -

Menu restreint
Activer les scripts pour afficher le menu complet

In depth Developer Audit

Made for Windev developers, this audit helps identify potential security vulnerabilities in the application and its protections.

Indeed, an insufficiently protected Windev application may allow, in some cases:
-	Viewing of the project initialization source code
-	Discovering the HFSQL files passwords
-	Getting the parameters of the internal functions
-	Viewing the HFSQL file contents

Since version 12, the Windev framework includes a basic anti-debug, which in many cases can be easily circumvented.
Thus, it is possible to use a debugger during the execution of the program to see sensitive information (strings, passwords...) as and when they are used.

To identify these potential problems we are doing a thorough audit of a standard distribution of the application by extracting of the executable itself during its use any information that may facilitate unauthorized access to the application.

For that we are checking:
-	Any information easily accessible in the code itself
-	The application security with respect to sensitive internal functions (those related to passwords, encryption, FTP access...)
-	The strength of the key generation algorithm
-	The intrinsic security of HFSQL files and analysis

We will provide a full report (Word or pdf format):
-	Giving the results of these tests
-	Highlighting the potential risk of hacking
-	Proposing solutions to improve data security

Pricing
	The cost and amount of work for such an audit depends on the size of the application we will check. Starting at 500€ for a small application up to 1,000€ for a big one integrating many components (internal or external). Please contact us for a quote. You will need to provide us, by any means of your choice, with the executable, any external component or better yet, the real distribution package of your application. We will send you back a quote that you'll need to sign and return as your order. The estimated completion time will be communicated at the same time.

Order
	Once the order and all the necessary files are received, we will launch the audit as soon as possible.

Confidentiality
	Obviously the information communicated or obtained during this audit will in no case be disclosed to third parties without your permission. Your order will automatically bind us regarding this contractual agreement.