 |
|
| |
| |
|
|
| Home > Offerings > Information Security Management > Security |
| Services Offer > Penetration Test |
| |
Are you at risk of being hacked? |
Are you waiting for hackers to penetrate your most valuable business systems? You have spent in information security products, but how effective are they? Don’t wait for hackers to discover your information security weaknesses before you do! It will be too late by then.
Penetration Test (PT) helps you to hack your business systems. It is the spear to test the strength of your shields. PT will tell you about the effectiveness of information security enforcement in your organization.
The PT identifies your information security weaknesses. This allows you to strengthen the security controls before the weaknesses are exploited by unauthorized parties. |
| |
Approach |
The PT offers a systematic approach using known vulnerabilities in an attempt to access your servers, network and business applications. The tests will be conducted both from within your internal network and from the external internet network. We utilize automated tools, manual toolset and manual processes review to conduct our penetration services.
Using combination of all the above methods, we could assess and examine your critical business systems. The PT will help to identify, isolate and confirm possible vulnerabilities in the design and implementation of passwords, firewalls, encryption and other security controls.
We offer 3 types of PT services: |
| |
|
Black Box |
We will perform the penetrations from a remote location out of your network. This will effectively simulate the action of hackers with minimum knowledge of your network and information system. |
| |
|
|
|
|
We will launch attacks from your internal network, simulating malicious employee with some level of knowledge of your network and information system. |
| |
|
|
|
|
We will launch attacks from both the internal and external network, after carefully review the security configurations and policies of your network and servers. This is the most effective PT to simulate the worse case scenario of a malicious IT staff, where they possess thorough understanding of the security protection and weaknesses. |
|
| |
| |
|
|
|
|
|
| |
 |
|
 |
