Website Penetration Testing is a manual ethical-hacking assessment of your website — a real tester probing your site the way an attacker would, which is far more accurate than automated scanning tools alone. £28, with reports delivered by email.
What we test for
- Injection flaws — SQL, command and related injection points.
- Cross-site scripting (XSS) and cross-site request forgery (CSRF).
- Authentication, session and access-control weaknesses.
- Security misconfigurations and exposed administrative interfaces.
- Outdated software, CMS and component vulnerabilities.
- SSL/TLS configuration and certificate issues.
- Information disclosure and other common web vulnerabilities.
Manual, not just automated
Automated scanners miss logic flaws, chained vulnerabilities and context-specific weaknesses. Manual ethical hacking finds the issues that actually matter — testing your site by hand for far more accurate, real-world results.
What you receive
Two reports, both delivered by email
- An executive summary of the threats found, in plain language.
- A detailed technical report with the findings and how to resolve them.
If you'd prefer not to fix the issues yourself, we can quote separately for the remediation work.