 |
Penetration Testing
|
|
 |
|
Who has a key to your Information System?
|
Penetration Testing:
When
infotex
conducts a technical assessment of your network, we are testing and probing it for
vulnerabilities.
Though our process will mimic attack methods in many instances, our Penetration Tests
are more of a thorough review than an
all-out assault on your network. We document what we find and
organize the findings into a report that helps your IT staff prioritize
and remediate vulnerabilities.
-
External Scan:
We utilize all known “attack
methods” to attempt to access your internal network from outside your
network perimeter. We collect
scheduling information during an initial interview and then conduct
the perimeter testing portion of the review over a period of twenty
days. Our report will include recommended courses of action based on
our findings.
-
Internal Scan:
Once the External Scan is complete, we will conduct an Internal Scan.
Internal scans are performed with, but are not limited to, the same
tools as an External Scan. We take all possible measures to get an
accurate and complete analysis and scan of the network while
minimizing the impact to production systems in use.
-
Social Engineering Tests:
We execute a few simple but effective tests as part of our
technical assessment. This assists in measuring security
awareness and provides an eye-opener to your user-base related to
the dangers of a lax attitude towards the value of the information
capital on your network.
Our
technical assessment is one important component of an overall risk
analysis, which includes other processes such as policy/procedure
review, risk assessment, and remediation planning.
|
|
|
