This is to certify that SecIQ Technologies has performed Vulnerability Assessment and Penetration Testing (VAPT) from 03-Jan-2025 to 07-Jan-2025 for the Digital Signature of the following uKnowva HRMS:

Executive Summary

Scope of Testing:

The scope of this penetration testing was limited to the Offer Letter Generation features of the above applications, specifically focusing on:

• Digital Signature

Findings & Summary:

The Vulnerability Assessment and Penetration Testing (VAPT) conducted focused on identifying security vulnerabilities in the Offer Letter Generation features of the uKnowva API integration. The application was tested for compliance with OWASP security guidelines and business logic test cases.

No security issues or business risks were identified during the assessment within the defined scope. The Offer Letter Generation features are generally secure, but vulnerabilities in related modules or the overall platform may indirectly impact their security.

Assessment Approach:

The assessment was conducted using a grey-box approach, simulating an authenticated user’s perspective. The following phases were included in the assessment:

A. Application Profiling / Reconnaissance:
Understanding the application’s features, design, and behavior to identify potential vulnerabilities.

B. Business Logic Testing:
Evaluating the application’s functionality and workflows for logical security flaws.

C. Manual Exploitation:
Identifying and exploiting vulnerabilities using manual testing techniques.

D. Vulnerability Assessment:
Scanning the application using automated tools to identify known vulnerabilities.

E. Report Generation & Review:
Documenting findings and validating them during a review phase.

In case you face any problems, then please write to This email address is being protected from spambots. You need JavaScript enabled to view it., our awesome support team will surely help you!