DSShield Application Security Audit is a professional service that identifies and assesses threats to organizations through custom applications and systems. The service follows OWASP (Open Web Application Security Project) guidelines and OSSTMM standards to build assessment checklists. The service evaluates applications to ensure they do not expose underlying servers and software to attacks, and that malicious users cannot access, modify, or destroy data or services within the system. The assessment methodology includes four main components: High Level Design Audit examines information flow throughout the application environment, sensitive data in different organizational sections, and threats to sensitive information. Source Code Audit reviews code for vulnerabilities in cryptography, authentication, session management, data validation, exception management, authorization, and auditing and logging. Black Box Testing evaluates communication behavior, fault injection points, client-side application behavior, third-party application interactions, file interpretation, and cryptanalysis. The service uses software testing techniques including black-box testing, fault injection, and behavior monitoring to test each application. The assessment aims to secure information flow, implement secure coding practices, remove logical and formatting flaws, embed security from design to execution, recognize existing vulnerabilities, and harden technologies.