Web & application
Application & Website Security Review
Find the holes in your web app before someone else does.
Findings, fixes and a hardened deployment, delivered by someone who actually ships web apps.
Who this is for
- NZ businesses running customer-facing web applications
- WordPress and WooCommerce sites at any scale
- Teams that want a real review, not an auto-scan PDF
What we actually do
- OWASP Top 10 walkthrough against your live application
- Authentication and session handling review
- Authorisation logic and IDOR testing
- Dependency and supply-chain audit
- Secrets and configuration review
- WordPress-specific: plugin posture, admin hardening, REST exposure, file permissions
What you get
- Written report with every finding rated and reproducible
- Fix-it-or-we-fix-it option (we can do the remediation under the same engagement)
- Re-test of every fixed finding
Pricing
From $2,500 + GST for a small site. Larger applications scoped on request.
Timeline
One to two weeks for most engagements.
How we get access
Read-only access where possible. Authenticated testing accounts where required.
Ready to scope this?
Send us your details. We come back with a fixed price and a start date.