Penetration Test

Penetration Test

ABOUT THE SERVICE

Penetration testing is a scheduled, authorized and systemic process of using techniques to exploit known vulnerabilities in order to carry out a controlled intrusion into a network, host or application. Penetration testing can be conducted internally (within a location or security system) or externally (targeting the company's domain or internet connection). It typically consists of the use of automated tools and manual techniques to test the company's resources.

IN AN PENETRATION TEST YOU WILL GET:

Technical report containing the vulnerabilities found and recommendations for their solution.

Executive report containing a summary of the health of the environment and an action baseline for the correction of all problems by priority.

Retest scheduled to confirm the solutions adopted.

Security certificate valid for 6 months.

White Box

Penetration testing starts with great knowledge of the scope.

Gray Box

Penetration testing starts with partial scope knowledge.

Black Box

Penetration testing is started without any prior knowledge of the scope.

PROCESS

1
Documentation

Development of all documents necessary for the start of the tests.

2
Recognition

Collecting information about the domain to be tested passively.

3
Enumeration

Collection of target information such as ports, services and vulnerabilities.

4
Exploration

Attempts to exploit vulnerabilities found in the previous phase.

5
Post-exploitation

Simulation process for covering tracks and implementing backdoors.

6
Presentation

Executive technical report and final presentation of results.

Talk to Diazero

If you need any information, just contact us by filling out the form below.

Loading...