In November and December 2010 our specialists conducted a security audit of the transaction application for one of the leading Polish Banks. The security audit included practical verification of the security level offered by one of the key Bank's transaction applications and consisted the following activities:

• Penetration test of the transaction application from the Internet,
• Penetration test of the transaction application from Bank's Intranet,
• Penetration test of the DMZ, including network devices and security systems,
• Analysis of operating systems' configurations and servers' services,
• Analysis of network devices and security systems' configurations.