Penetration Testing
While the highest risk is normally associated with internal security vulnerabilities,
the highest profile vulnerabilities are external.
We can help customers to ensure that their Internet, dial-up, WAN
and LAN connections are secure, and cannot be used to access
internal systems without authority, or vulnerable to attack.
The goal of penetration testing:
The goal of this process is to determine if the host(s) and network can be bypassed.
Penetration Testing provides evidence (sometimes to an unbelieving audience) that vulnerabilities indeed are exploitable.
It brings a dose of reality and intense focus to the vulnerability assessment.
Penetration testing is characterized as either external or internal to the network.
An external penetration test can be conducted from the following views or combinations of views.
*Valid Account
Given a known valid user name.
*Zero Knowledge
No knowledge of network services, security measures.
*Full Knowledge
Client provides list of internal & external IP's. Operating systems used, services.
The penetration-testing method developed & used by Penguin-Security Network's has proven to be
very effective in determining the exploitable characteristics of the identified vulnerabilities in a given
network or host system.
Each penetration test yields a detailed report.
Report includes:
Host & IP tested
Time of Test
Methods used for conducting test
Improvements
Recommendations
Other Services:
[ Network architecture review and engineering ]
[ Network Vulnerability Assessment (NVA) ]
[ Risk assessments ]
[ Security Policy Review and Procedure Development ]
[ Incident Response ]
|
