 |
Penetration Testing
|
Elate IT Penetration Testing Service caters organizations means to protect their important information assets by giving organizations and individual’s direct access to Ethical hackers and other IT professionals not usually available for hire. Dynamic team of professionals having latest updates regarding exploit codes and techniques the underground is using for years to compromise your networks, we use the same techniques to solidify your network from such intruder attacks. When you hire Elate IT to provide specialized, objective assessment of your organization’s security vulnerabilities, you get a cracker-jack team of IS consultants who are also IS researchers. That’s because we believe that IS research must be linked to real-world IS problems, and real-world IS problems must influence what we research.
Security Assessment Services includes 2 types of penetration testing for your organizations vulnerability.
External Penetration Testing
This includes testing of network components which are accessible via public IPs. The tests involve discovering weaknesses in the following four key components of the Information Systems infrastructure: |
| |
 |
The Network architecture and components, including the networking devices like routers, switches and firewalls; |
|
The Servers, including the underlying operating systems, web servers and transaction servers; |
|
The Database Management Systems; |
|
The applications, including transactional components |
|
Internal Penetration Testing
A thorough study of internal network infrastructure is performed. This includes the review of the critical information assets, network topology, and security policies of network devices including firewall, routers, IDS etc and security policies of servers located inside the network.
The Penetration Testing Component is an elite, high-level service that requires the time and effort of experienced network security penetration testing experts to break a system's security and submit methodology documentation. Simple, bit by bit instructions will be provided to clients to rectify identified problem without any delay.
Elate IT team will undertake your organization Penetration Testing in 4 detailed step wise process: |
| |
Information gathering (Goal: Complete company profile) Searching information about your company is also referred to as Social Engineering where small yet really important mistakes are identified which is often ignored or the company personals are not aware at all. |
| |
|
Search for information about the company |
|
Internal network infrastructure |
|
Systems or business-critical applications used |
|
Looking for security holes and weaknesses in implementation or process |
|
| |
Information analysis (Goal: Plan of attack) A complete plan of attack is chalked out in relation to organizations most sensitive areas of information security |
| |
|
Filtering all information collected in Step 1 |
|
Evaluate complete company profile |
|
Define first steps for break-in tests, and plan activities for penetration |
|
| |
Perform the test (Goal: Test the environment) After complete information gathering and thorough planning areas considered to be most threatened are tested by attacking and cracking organization network information structure |
| |
|
Perform the attack |
|
Keep detailed logs on everything |
|
Report findings |
|
| |
| Reporting (Goal: Rate the tested environment) |
| |
|
Complete deliverables |
|
Recommendations based on weaknesses reports |
|
| |
| |
|
