Penetration Testing

This test reviews the network environment and the strength of the perimeter defenses against an external vulnerability, as well as the security of websites and external applications. Our threat model utilizes thousands of attacks that are used by opportunistic hackers used to compromise organizations every day.

These attacks include:

• Searching for publicly available domain registration for useful information
• Port scanning of network resources
• Identification of systems and services accessible over the Internet
• Brute force attempts with weak or default passwords
• Comprehensive Vulnerability Scanning identifying over 100,000 of the top vulnerabilities
• Manual exploitation of identified vulnerabilities in external applications
• Elimination and confirmation of false positives

This test will emulate the action of a malicious actor on the internal network. Our penetration testing goes beyond a simple vulnerability assessment by performing manual attacks such as man-in-the-middle attacks. Our threat model utilizes thousands of attacks that are used by opportunistic hackers used to compromise organizations every day.

These attacks include:

• Port scanning of network resources
• Identification of systems and services accessible over the Internet or through VPNs
• Brute force attempts with weak or default passwords
• Man-in-the-Middle Attacks
• Comprehensive Vulnerability Scanning identifying over 100,000 of the top vulnerabilities
• Manual exploitation of identified vulnerabilities in applications
• Establishing persistence and enumerating the reach of a potential attacker