|
| Penetration Testing |
|
| What is a penetration test? |
|
| A penetration test subjects a system to real-world attacks selected and conducted by our security staff. The benefit of a penetration test is to identify the extent to which a system can be compromised before an actual determined attack. Our test results will show either you where you to need enhance your security, or let you know that you should sleep better at night. Only a real penetration test can simulate what would happen if a determined hacker were to attack your organization. |
|
| Since TransitNetworks monitors and protects networks in financial services, healthcare and utilities we have deep expertise in attacks and exploits used against mission critical assets. In fact, the TransitNetworks attack database contains just over one billion attacks that we have prevented. This means that when we conduct a penetration test on your network, we know what attacks are out there, and which are the most commonly used against institutions like yours. Our tests are finely tuned using this unique expertise and this translates into a more focused, cost effect penetration test. |
|
| The penetration test process |
|
| Discovery |
|
| TransitNetworks will perform thorough searches of the various databases, scan tools, etc, to obtain as much information as possible about the target organization. These searches often reveal many more Internet connections than the organizations expect. It is also important to leverage Usenet postings and Social Engineering tactics (if in scope)--many organizations are amazed by how willing their employees are to divulge information that is useful to an attacker. |
|
| Enumeration |
|
| Once specific domain names, networks and systems have been identified through discovery, the penetration tester will gain as much information as possible about each one. The key difference between discovery and enumeration is the level of intrusiveness. Enumeration involves actively trying to obtain user names, network share information and application version information of running services, limited only by agreed-upon rules of engagement and scope. |
|
| Vulnerability Mapping |
|
| Vulnerability mapping, one of the most important phases of penetration testing, occurs when security practitioners map the profile of the environment to publicly known, or, in some cases, unknown vulnerabilities. TransitNetworks has a dedicated research department, which is constantly combing the "blackhat" community for new and emerging vulnerabilities. The tester's most critical work is performed during the discovery and enumeration phase. |
|
| Exploitation |
|
| The exploitation phase begins once the target system's vulnerabilities are mapped. The penetration tester will attempt to gain privileged access to a target system by exploiting the identified vulnerabilities. The key to this phase is manual testing. No automated tool can duplicate the testing of an experienced penetration tester who is skilled in the art. |
|
| Report |
|
| TransitNetworks works with you to develop a report that will provide clear findings and a prioritized matrix of actions, work efforts, and findings. |
|
| Report TransitNetworks will provide a preliminary draft report to the technical point of contact for the purposes of review and clarification followed by a final report at the conclusion of testing. The report will include: |
|
|
Executive Summary (jargon free, true executive level summary) |
|
Methodologies and scope, and summary of evaluations |
|
Priority Matrix, indicating remediation priorities, and risk |
|
Work Matrix, indicating estimates of work efforts required for remediation |
|
Findings and recommendations sufficient for risk management and remediation planning |
|
Recommendations Support |
|
| TransitNetworks is available for up to one year to provide additional support for findings and recommendations, or any remediation efforts. |
|
| Complementary Services |
|
| Assurance Testing |
|
| Information security is an integrated process that reduces information risk to acceptable levels based on an assessment of risks. Because penetration tests only measure the security posture at a point in time, increased testing frequency provides increased assurances that certain control processes that are in place are still functioning. |
|
| Social Engineering Testing |
|
| Social engineering tests your "human firewall". This is a method of gaining access to an organization and its assets by tricking key personnel over communications medium such as telephone, email, chat, bulletin boards, etc. from a fraudulent "privileged" position. If your staff has received the training to defend itself, this test will enhance their effectiveness. |
|
| Modem Testing (WAR Dialing) |
|
| This is a method of enumerating modems and gaining access privileges to the modem-enabled systems of a target organization. |
| |
