TESTING SERVICES
Penetration Testing
We scrutinize your security systems to help you understand your biggest weaknesses — and how those weaknesses could affect your business.
TESTING SERVICES
Penetration Testing
We scrutinize your security systems to help you understand your biggest weaknesses — and how those weaknesses could affect your business.
Our penetration testing turns data security gibberish into valuable insights.
We offer expert internal, external, and physical penetration testing services. We follow tried and tested methodologies honed over our combined decades of public sector, private sector, and military experience. Our impact-driven reports not only help you identify vulnerabilities — they help you understand how those issues affect your organization.
EXTERNAL PENETRATION TESTING
External network penetration testing is performed from the perspective of a remote attacker outside of the organization’s perimeter.
The goals of an external penetration test include:
- Identify vulnerabilities and misconfigurations in public-facing systems, such as web servers and login portals.
- Evaluate the effectiveness of external security controls such as routers, firewalls, and intrusion detection systems (IDS).
- Identify internal assets that have been mistakenly exposed to remote access.
INTERNAL PENETRATION TESTING
Internal penetration testing is performed from the perspective of an attacker that already has access to the organization’s internal network infrastructure. This allows the organization to measure the potential impact of a perimeter breach or insider threat situation.
The goals of an internal penetration test include:
- Evaluate the effectiveness of internal security controls, such as antivirus and introduction detection systems (IDS).
- Perform segmentation testing and assess whether it is possible to exfiltrate data from the corporate environment by bypassing data loss prevention (DLP) controls.
- Demonstrate the effects of an insider threat situation or perimeter breach.
PHYSICAL PENETRATION TESTING
Physical security testing is performed from the perspective of an attacker looking to exploit any security weaknesses of an organization. This creates an opportunity to evaluate the true security needs of the physical perimeter defense.
The goals of a physical security test include:
- Pinpoint key security gaps (including the evaluation of security cameras, security lighting, door access systems, HVAC vulnerabilities, etc.).
- Test security protocols used by staff (key cards, door codes, security guard procedures).
- Real-world testing approach, including Digital Silence professionals on site covertly.
