cyber shield

Security Baseline & Configuration Audit

Security baseline & configuration check is compliance check of target IT Asset’s security configurations against standard baseline or compliance setting; After such audit/check, stakeholder can follow audit result to do security hardening for assessed IT assets to meet the security baseline or compliance requirements in order to reduce the risks of cyber-attack.
Targeted IT Assets: Operation System (OS), Container, Server, DB, Firewall etc.

Smart Contract Audit

Smart contract audit is a process of assessment on blockchain smart code contract to identify security vulnerabilities and poor coding practices, and come up with recommendations to remediate identified security weakness. The smart contract audit can be either static audit on contract code, or dynamic audit to run contract on public chain to identify security issues.

Static Audit

Assess smart contract security weakness at coding level

Dynamic Audi

Run contract on public chain to identify security weakness

Source Code Audit

Source code audit, is actually white-box penetration test to test application’s security weakness at source code level; such assessment process involves both automatic tool scan and manual assessment. For newly developed application, it is highly recommended to conduct source code audit to eliminate security issues from root before this application is launched.