I have two public sites that require basic security testing. Both sites are in production and this is just a check to see if there are any exposures missed.
The two sites are IIS based. One is a static site and the other is ASP.NET 2.0 based. The sites do not require authentication, nor do they record personal information.
I need to test for the following at least:
* Cross Site Scripting
* Link injection
* Frames exposure
* Hidden directories
I require a document with the url's tried and the results. If extra information can be extracted from the sites, it should also be included in the document and how it was extracted. The expectation is that the document is only 2-3 pages long (+ images).
The aim is to find any significant exposures. Recommended fixes would be appreciated but are not strictly in scope. The overall security of the IIS server itself is also not in scope.
Tests have already been performed by the site's developer (me) and have found no exposure. I need a second opinion urgently.
The URLs for the two sites will be provided to the successful bidder.