Penetration Testing
Identify exploitable vulnerabilities and prioritize risks with the help of ethical hacking. Evaluate defence capability of your systems, devices and networks to protect your business from cyber attacks.
Vulnerability Assessment
Receive a systematic scan of critical security weaknesses which hackers can exploit. Consult with cyber security experts on the methodical check results and gain insights on how to correct flaws.
Process
Vulnerability indetification
First, we perform automatic and manual security tests to identify security threats, from simple misconfigurations to critical errors in product architecture.
Evaluation of the vulnerability risks
We analyze the identified threats and ensure that all anomalies (such as duplicates and false positives) are excluded from testing.
Define steps for remediation
Based on risk profiling (where we take into account elements such as the number of affected systems, type of data at risk, business risk, potential damage), we prepare a set of guidelines to help you eliminate security problems and reduce risk.
Reports on vulnerabilities
When all steps are done we provide you also with both executive and technical reports on vulnerabilities which were identified and the proposed solutions for mitigating.
Approaches
White box
The Penetration Testing Team works with the company’s IT department with unrestricted access to internal resources or data they may need during the test.
Grey box
Access to internal resources and data is limited. Some IT staff may not be aware of the penetration test in order to verify their response.
Black box
No access to internal resources. Only certain employees in the company know about the penetration test to check the response of the IT department and detect countermeasures to the attack.
Penetration Testing Methodology
Collection of information
Use Open Source Intelligence (OSINT) to collect sensitive data that could be used to facilitate attacks.
Deficiency modeling
Collection of relevant documentation, identification and categorization of primary and secondary assets, identification and classification of threats and community threats, and mapping of community threats against primary and secondary assets.
Vulnerability analysis
Vulnerability testing is the process of detecting errors in systems and applications that can be exploited by an attacker. These shortcomings range from incorrect host and service configuration to uncertain application design.
Exploiting vulnerabilities
Gaining access through vulnerabilities, configuration errors, or social engineering.
Findings
The value of the machine determines the sensitivity of the data stored on it and the usability of the machine in further endangering the network.
Reporting
Communication of objectives, methods and results of testing.
What’s on radar.
Visit our blog
Slovenia
Slovenia
Unec 21
SI-1381 Rakek
SI-1381 Rakek
- sl@angelis.agency
- +386 40 831 350
Germany
Germany
Kronstadter Str. 4
DE-81677 München
- de@angelis.agency
- +49 157 359 992 86
Slovenia
Slovenia
Unec 21
SI-1381 Rakek
- sl@angelis.agency
- +386 40 831 350
Italy
Italy
Via. E. Forlanini 23
IT-20134 Milano
- it@angelis.agency
Germany
Germany
Kronstadter Str. 4
DE-81677 München
- de@angelis.agency
- +49 157 359 992 86
Copyright 2021 by ANGELIS d.o.o. All Rights Reserved.