Penetration Test

Servers, applications, remote users and other services, once connected to your network, pose a risk to your organization. Hackers and malicious users, both internally and externally, may attempt to exploit security weaknesses to gain access to sensitive information assets.   Identifying and remediating these risks is critical to protecting your organization at the perimeter as well as throughout your internal environment.   The total average cost of a data breach was $197 per compromised record in 2007, up from $182 in 2006, and from $138 in 2005.  

Solution At-a-Glance:

Penetration tests differ from automated vulnerability scans in that efforts are focused on actually exploiting weaknesses with the intent of gaining access to the environment. They may be performed with varying levels of prior knowledge and can be performed external or internal to the environment. The scope of the Penetration Test may include testing of wired networks, wireless networks, web applications, users (social engineering), or other specific scenario based reviews. Penetration testing ensures deeper level testing of the environment, and the people that utilize it, to demonstrate what a malicious individual could accomplish.    Penetration Test deliverables include comprehensive and fully customized reports that outline key vulnerabilities correlated with business and security risks. Recommendations for effective countermeasures will provide the foundation for a strategic security road map and risk management program.   
  • In depth testing of responding systems, network infrastructure, platforms, and applications may be performed externally (internet accessible), internally (private), or both
  • Locate and identify responding hosts and services
  • Identify, enumerate, and exploit vulnerabilities across responding services, ensuring the most comprehensive and complete results
  • Comprehensive reporting of findings, risks, and step by step walkthroughs of successful exploits
  • Identify and document approaches and recommendations to resolve security vulnerabilities  

Ethical Hacking Training:

In-depth, hands-on, ethical hacking training. Learn how to find and exploit vulnerabilities in systems and applications, and the corresponding methods for preventing such exploits.