Infrastructure Testing
Infrastructure penetration testing assesses your internal & external network & infrastructure using the same tools and techniques employed by threat actors worldwide to discover vulnerabilities, misconfigurations, and weaknesses in your environment.
What Gets Tested?
Testing your network & infrastructure allows you to uncover security vulnerabilities and address them before they become a real world problem. Our team of CREST-certified penetration testers will assess your infrastructure against industry best practice standards, such as PTES, and will assess the following areas as part of the engagement:
​
-
Excessive Information Disclosure to ensure you aren't broadcasting sensitive information
-
Encryption to ensure data is properly encrypted
-
Error Handling to confirm error messages aren't revealing sensitive information
-
Patching to ensure that your infrastructure and underlying firmware are up to date
-
Port Scanning to confirm no unnecessary ports and services are available for exploitation
-
Authentication to confirm whether common vulnerabilities exist e.g., default accounts & passwords.
