Skip to main content

Public

Project privacy set to public. By default, its content is available to everyone (authenticated or not). Please note that more restrictive permissions might exist on some items.

    •  
      code_for_government #331606
    Security Bug Testing
    UMANG
    UMANG - Vulnerabilities, Risks & Mitigations
    Manas Gupta (manasgupta7674)
    Active
    Unit Testing
    Medium
    Campaign

    Conduct a comprehensive security assessment to detect potential vulnerabilities and privacy concerns within the UMANG application. Provide detailed reports on any identified issues, including risk assessments, recommendations for mitigation, and compliance with security best practices and privacy regulations.

    Empty

    A thorough documentation of any security weaknesses found across all layers of the application, including network, database, application, and third-party integrations. Privacy compliance checks will focus on data handling, storage practices, and access controls to address any concerns over unauthorized data sharing, retention, or access. The assessment will categorize vulnerabilities by risk level (low, medium, high), detailing their potential impacts on data integrity, application availability, and overall security. Each vulnerability will come with specific mitigation recommendations that include technical fixes, configuration adjustments, and policy updates, with a suggested implementation timeline and prioritization. The final outcome will include a comprehensive report with findings, recommendations, and follow-up actions, as well as updated security protocols for the UMANG development and operations teams. Ultimately, this will enhance UMANG’s security framework, mitigate risks, and strengthen user trust by demonstrating a commitment to robust security and privacy practices.

    May be submitted in excel sheet.

    Empty
    Empty
    2024-11-07 15:59
    2025-10-31

    Organization Type : Goverment Publisher Name : UMANG, National eGovernance Division, NeGD

    Shipra Saxena (Shipra14)
    https://web.umang.gov.in
    Empty
    #331606
    Display settings

    Follow-ups

    User avatar
    Amit Kumar (amitkr12)2025-09-23 11:59
    • Assign To changed from Shalini Gupta (shalini1410) to Manas Gupta (manasgupta7674)
    • Assigned On set to 2025-09-23
    User avatar
    Atharva Vasant Patil (indira)2024-12-16 11:36

    I am Atharva Vasant Patil, an employee of Indira Group of Institutes, Pune, Working as an information security expert. My skill sets implemented in my work life are VAPT analysis, vulnerability testing, Network auditing, and Deploying Security Architecture. I am interested in contributing to this project because it aligns with my academic background and career aspirations. Through this project, I aim to apply my skills, learn from practical challenges, and contribute effectively to the project's goals.

    User avatar
    Siddhi Tandalekar (siddhi)2024-12-16 11:35

    I, Siddhi Sunil Tandalekar, am an employee of Indira Group of Institutes, Pune, Working in the Information Security Department. My skill set includes VAPT, Web Application Testing, and Network Auditing. I am interested in contributing to this project because it aligns with my academic background and career aspirations. Through this project, I aim to apply my skills, learn from practical challenges, and contribute effectively to the project's goals.

    User avatar
    Shalini Gupta (shalini1410)2024-11-19 14:13

    I am interested in contributing in this project as it perfectly aligns with my skills in Testing. I am well versed with the technologies and the risks. I have also completed courses such as Information Security and Audit, Information Security and Management and Cyber Security, which has helped me apply my skills in practice.

    User avatar
    Shipra Saxena (Shipra14)2024-11-07 16:46
    • Mentor(s) changed from Shipra Saxena (Shipra14) to None
    • Mode of the task set to
    • Mode of the task set to