We find the holes;
you protect your infrastructure.
Get your network hacked.
Network Infrastructure
From internal to external infrastructure, we can test and advise proper security and segmentation.
The network infrastructure comes in layers when it comes to pen-testing.
On the transport layer, attention is paid to proper network segmentation, routing and firewalling. Additionally, the operations and configuration of typical network devices such as routers, managed switches, firewalls, wireless infrastructure and MPLS lines come all under audit. The next level covers shared services providing the ecosystem with crucial functions or data such as authentication, authorization, publishing of services from/to network zones of different security level, base IT management, standardized application components, and more.
All of these mentioned categories of IT infrastructure components may be tested (black-box) or audited (white-box). Additionally, network design consulting is available. Do not hesitate to include security consultants in project teams right from the start.
Our insight.
Services for network infrastructure.
Frequently asked, always answered.
The object of the test is not to disrupt service or damage any information. However, we cannot predict how the system will always respond to an exploit, so we recommend that there are operations personnel ready and backups available.
A report includes the list of vulnerabilities discovered with severity rating. Additionally, there is a managerial summary which outlines how these vulnerabilities correspond to a business risk, and a technical write up, so developers can reproduce and correct the issues.
The difference between a black box and a white box test is the level of information given to the tester at the onset of the test. With a black box test, the tester is given limited information in order to provide a more realistic scenario, with the information only found publicly. Alternatively, a white box test can allow for a more thorough test of the platform by giving the tester more information up front so they design more attack scenarios around the complete information.
The simplest way to estimate a project and build a quote is by having someone from our team take a quick look at the environment to determine the size of scope. We found that this provides the most accurate result for the quoting process and allows for the project to include the desired scope without being over priced.