Penetration Testing

At Intrinium, we believe a first step to review your network vulnerabilities is a Penetration Test. We offer both internal and external penetration tests which are simulated cyber attacks against your entire network/website/domains to check for exploitable vulnerabilities and potential security risks. For the convenience of our clients, we execute tests either remotely from our headquarters or on-site at your company with one of our trusted consultants. These tests are performed with the intention of being the first phase within a holistic process of vulnerability analysis, prioritization, remediation, and maintenance that is our core commitment to securing your environment.

External Penetration Testing

This test reviews the network environment and the strength of the perimeter defenses against an external vulnerability, as well as the security of websites and external applications. Our threat model utilizes thousands of attacks that are used by opportunistic hackers used to compromise organizations every day.

These attacks include:

  • Searching for publicly available domain registration for useful information
  • Port scanning of network resources
  • Identification of systems and services accessible over the Internet
  • Brute force attempts with weak or default passwords
  • Comprehensive Vulnerability Scanning identifying over 100,000 of the top vulnerabilities
  • Manual exploitation of identified vulnerabilities in external applications
  • Elimination and confirmation of false positives

Internal Penetration Testing

This test will emulate the action of a malicious actor on the internal network. Our penetration testing goes beyond a simple vulnerability assessment by performing manual attacks such as man-in-the-middle attacks. Our threat model utilizes thousands of attacks that are used by opportunistic hackers used to compromise organizations every day.

These attacks include:

  • Port scanning of network resources
  • Identification of systems and services accessible over the Internet or through VPNs
  • Brute force attempts with weak or default passwords
  • Man-in-the-Middle Attacks
  • Comprehensive Vulnerability Scanning identifying over 100,000 of the top vulnerabilities
  • Manual exploitation of identified vulnerabilities in applications
  • Establishing persistence and enumerating the reach of a potential attacker

At the conclusion of any Intrinium Penetration Test, our success will be reflected against project deliverables and validation that meets the following success criteria:

  • Completion of external vulnerability and network penetration testing module
  • Documentation of detailed test findings and remediation recommendations
  • Completion of executive summary testing report
  • Completion of firewall assessment
  • Documentation of firewall assessment findings and remediation recommendations

A Hitchhiker’s Guide to Firewall Management Services

By Samantha Agather, Information Security Analyst- Intrinium A Hitchhiker’s Guide to Firewall Management Services As a business owner, you want to keep your data safe. But what if your firewall fails and customer information is stolen, or you lose the person...

Capture the Flag Comes to Spokane

Chiara Morrison - Manager, Marketing  Spokane Mayor's Cyber Cup 2019 Chiara Morrison sat down to interview the creator of Spokane Mayor’s Cyber Cup 2019, Max Dulin, Senior at Gonzaga University, Computer Science Major. Chiara: Max, can you tell me a little bit about...

What is an Internal Vulnerability Test?

Chiara Morrison - Manager, Marketing  What is an Internal Vulnerability Test? The Intrinium Internal Vulnerability Assessment evaluates IT security from the inside of your organization and identifies critical vulnerabilities that could be exploited by attackers that...

What is a Risk Assessment?

Chiara Morrison - Manager, Marketing  What is a Risk Assessment? Risk Assessment is the combined effort of executing the following: 1.     Identifying and analyzing potential (future) events that may negatively impact individuals, assets, and/or the environment (i.e.,...

External Penetration Test 101

Chiara Morrison - Manager, Marketing  All businesses, large and small, face the growing challenge of Information Security within the organization. As an SMB, we know you want to protect your clients’ data and meet compliance requirements without allocating a...

Side-Channel: Page Cache Attacks

A side-channel attack is an attack vector through which a threat could glean information from your computer or information system. This could be as simple as reading emissions (see Emissions Security or EMSEC) from your computer to using sophisticated methods of monitoring data being written onto your hard disk and making determinations that way.

Pin It on Pinterest