Tarlogic Website Security Audit is a professional service that conducts security assessments of web applications and websites. The service identifies vulnerabilities across web server configurations, infrastructure, application code, and business logic. The audit methodology is based on OWASP (Open Web Application Security Project) standards, applying over 90 specific security controls. The service examines various types of web assets including eCommerce platforms, APIs, management portals, PSD2 applications, CMS, and CRM systems. Testing approaches include both black box assessments (simulating external attackers without credentials) and white box assessments (with authenticated access and application information). The service identifies injection vulnerabilities, configuration weaknesses, framework vulnerabilities, and logic flaws that automated tools cannot detect. Audits can be performed anonymously or with authorized user credentials, depending on client requirements. The service includes analysis of web server infrastructure, middleware, and backend systems upon request. Deliverables include a list of identified technical vulnerabilities, security control assessment results, and detailed recommendations covering application code, architecture, configuration, and infrastructure improvements. Pricing ranges from €3,000 to €30,000 depending on application complexity, scope, number of exposed resources, and testing parameters.