Cyberfame
Search
K
Comment on page

Audit Web Assets

In this section, we will walk you through the process of auditing web assets or infrastructure for domains using Cyberfame's WebApp. We will use the status.im domain as an example and demonstrate how to identify vulnerabilities in its web assets.

Step 1: Access the Cyberfame WebApp

To get started, visit the Cyberfame WebApp and sign in with your account.

Step 2: Enter the target URL

Enter the URL of the resource you wish to analyze. In this case, we'll use https://status.im.

Step 3: Analyze the resource

Click "Analyze" to begin the auditing process. The WebApp will scan the domain and its assets, evaluating various security aspects.

Step 4: Review the Results

Once the analysis is complete, the WebApp will display a detailed report on the domain's supply chain, including infrastructure and different kinds of web assets.
In our example, we identified a new low-security-score netlify application: status-ens-airdrop.netlify.app. This application could be an entrypoint to status-im infrastructure, or pose security risk to users.

Step 5: Understand the Tests

The WebApp runs a series of tests on the domain and its assets, assessing areas such as:
  1. 1.
    SSL best practises
  2. 2.
    Protocol Fingerprinting
  3. 3.
    Domain & resource security
Want to read more about the tests we run and how we rate? See Web Asset Scanning & Rating.
With Cyberfame's WebApp, you can easily audit web assets of your web resources and identify vulnerabilities in applications and infrastructure. This enables you to address potential security risks and improve the overall security of your web resources.