Security Audit

We conducted a security audit of Fundación Acceso. Our Web Application Testing involved both manual and automated tools to simulate real-world attacks, followed by a detailed report outlining the vulnerabilities found, their potential impact, and recommendations for mitigation.

We made a thorough review of the infrastructure’s input and output mechanisms to detect common vulnerabilities such as SQL Injections, XSS, SSRF, logical bypasses, Broken Access Control misconfigurations, known vulnerabilities (outdated software and libraries), among others. We also checked different exposures as sensitive information leaks (user information, credentials, api keys), unauthorized access to protected areas, among others.

We also conducted an internal pentesting to address any potential exposure risks included unauthorized access to sensitive internal files or databases, exposure of critical services to external networks, among others.