We provide full internal infrastructure penetration tests, this is a test for you to see what would happen if you had a malicious person or a disgruntled employee plug in to your internal network to cause harm. These tests can be done as a White, Grey or Black Box engagements and are best performed as the Black Box option. After all testing has been completed we provide a report with a full list of findings and best ways to go about remediating them. Overall this would be a great insight to your internal networks current risks and vulnerabilities.
With many services opening and closing on companies external infrastructure everyday, it can be hard sometimes to know what doors are left open for a malicious individual or hacker to come through. With our external infrastructure testing we will be trying all the methods that the real bad guys would try to get in to your company. At the end of this testing will receive a full detailed report of all our findings including any vulnerabilities found during testing, as well as all remediation’s for these issues raised. If you’re not doing this already you should be, its a great way of understanding the risk your external infrastructure faces.
Websites change everyday with new things being added all the time, new functions, new forms, new pages. All these could be potential points of entry for an attacker, and once in, could be quite damaging to your company. Vulnerabilities in your site could lead to hackers gaining your customer information, defacing your website, deleting critical information or even pivoting further in to your internal network. Prevent all these things from happening with our web application pentest where we follow the OWASP top 10 Methodology for testing your site.
With mobiles in everyone’s hands these days and millions of different apps its crucial to make sure your one step ahead and have your mobile app secure. If a hacker finds a critical vulnerability in your mobile app this could lead to them further infecting the back-end servers or worse spreading laterally across other users. By using us for extensive mobile testing we aim to find all the bugs and vulnerabilities that underlay in the app and preventing the worst from happening.
So you have your gates, fences, guards with guard dogs in place but have you had it all tested from different angles. We work hard to find any loopholes or weaknesses in your physical security, can we sneak past your CCTV cameras, climb your fences and high walls, move around the shift patterns of your onsite guards all to get in to your building and obtain access to your network. Most concentrate their efforts on fixing the holes in their online environments and you forget to secure the physical environments.
Red team engagements are probably our most exciting service, this tests ALL of your defences that you have in place from online to physical. Normally set up as a project and over time our team will try anything and everything to gain a way in to your company. At the end of the engagement period a full report will be provided with an overview of all your security vulnerabilities that we found and how we exploited them. Then we work with you to make sure you can be as secure as possible for the real threats.