Our external penetration testing services are designed to critically assess your external network surface against sophisticated attacks and security best practice standards such as the Open Source Security Testing Methodology Manual (OSSTMM), the Open Web Application Security Project (OWASP) and the Council of Registered Ethical Security Testers (CREST).
Our internal penetration testing service shares the same methodology and approach used in the External Penetration Testing Service to assess your network against sophisticated attacks and security best practices. The test is typically carried out from the perspective of both an authenticated and non authenticated user to ensure that the network is critically assessed for both the potential exploit of a rogue internal user, and an unauthorised attack.
Our web application security assessment will comprehensively appraise the security of an application. The tests are carried out from both the authenticated and un authenticated perspective and will offer an evaluation of the sites security posture from both valid users who aim to escalate access privileges, and unauthorised users.
Our vulnerability assessment is a comprehensive assessment of your network, applications and IoT security. The tests will assess your security against security best practice standards. Unlike the external, internal and web application security testing services we will not look to exploit vulnerabilities, gain access or elevate privileges but simply seek, find and log known issues.
Our red team assessment is a simultaneous multi-blended, adversarial-based attack simulation against people, software, hardware and facilities. This is the most comprehensive organisational security testing available and will identify key security issues from infrastructure to people.