Penetration Test
ABOUT THE SERVICE
Penetration testing is a scheduled, authorized and systemic process of using techniques to exploit known vulnerabilities in order to carry out a controlled intrusion into a network, host or application. Penetration testing can be conducted internally (within a location or security system) or externally (targeting the company's domain or internet connection). It typically consists of the use of automated tools and manual techniques to test the company's resources.
IN AN PENETRATION TEST YOU WILL GET:
Technical report containing the vulnerabilities found and recommendations for their solution.
Executive report containing a summary of the health of the environment and an action baseline for the correction of all problems by priority.
Retest scheduled to confirm the solutions adopted.
Security certificate valid for 6 months.
White Box
Penetration testing starts with great knowledge of the scope.
Gray Box
Penetration testing starts with partial scope knowledge.
Black Box
Penetration testing is started without any prior knowledge of the scope.
PROCESS
Development of all documents necessary for the start of the tests.
Collecting information about the domain to be tested passively.
Collection of target information such as ports, services and vulnerabilities.
Attempts to exploit vulnerabilities found in the previous phase.
Simulation process for covering tracks and implementing backdoors.
Executive technical report and final presentation of results.
Talk to Diazero
If you need any information, just contact us by filling out the form below.