We assess your network infrastructure from the outside with no prior knowledge. Similar to how an attacker would begin to attack your network. The process consists of the following high-level steps:
- Information gathering: We collect information about your company, site and IP infrastructure from publicly available sources. We discover your range of IP Addresses visible publicly.
- Service Fingerprinting: We scan the IP addresses discovered for ports that are open. We usually find ports that are not meant to be open visible publicly. In general, a good rule of thumb is to only allow publicly, well-known services to be published. These include HTTP, HTTPS, SMTP, IMAP, POP3 or VPN. In this step, we collect all information regarding visible services on your IP addresses.
- Vulnerability Benchmarking: We conduct a combination of fuzzing (injection of random, unexpected data) and fingerprinting to determine if the services visible to the public are exploitable. If they are, we build proof-of-concept exploits, execute them and demonstrate how we were able to gain unauthorized access to your servers.
- Reporting/Workshops: The most critical phase of the assessment involves communicating the findings to your teams in an easy to understand manner. We will work with your developers and administration teams to provide them with guidance and expert knowledge on how to mitigate the problems discovered.