Objectives
Penetration Testing: Exposing Critical Security Gaps with Real-World Intrusions.
- Detect weak links with simulated attacks by experts
- Identify compliance gaps and internal/external security weaknesses
- Reveal likely attack paths and potential data compromises
- Assess vulnerabilities across systems to prioritize remediation
- Simulate real-world attacks to test external and internal access
- Highlight configuration, process, and staff practice weaknesses
Penetration Testing Benefits
- Avoid Catastrophic Financial Loss
- Ensure Regulatory Compliance
- Validate Your Security Investments
- Preserve Customer Trust and Reputation
External Pen Test
Simulates an attack from the public internet to breach your external, perimeter defenses.
Request a Proposal
Internal Pen Test
Simulates an attack from an insider or a compromised user to test lateral movement and privilege escalation within your network.
Request a ProposalWeb Application Pen Test
Focuses on the application code, logic, and configuration to uncover flaws like SQLi and XSS that compromise user data.
Request a Proposal
External Penetration Test
- Client personnel and cultural information
- Client business terminology
- Technical infrastructure information
- Cloud resource identification
- Continuous Integration/Continuous Development (CI/CD) third-party usage identification
- Network discovery
- Network port and service identification
- Vulnerability identification
- Application/portal enumeration
- Password cracking
- Discovered credential usage
- Manual and automated vulnerability validation
- Privilege escalation
- Additional tool installation
- Data discovery
Internal Penetration Test
- Network discovery
- Network port and service identification
- Vulnerability identification
- Enumeration
- Password cracking
- Discovered credential usage
- Manual and automated vulnerability validation
- Privilege escalation
- Additional tool installation
- Data discovery
Web Application Penetration Test
- Client personnel and cultural information
- Client business terminology
- Technical infrastructure information
- Network Discovery
- Network Port and Service Identification
- Analyzing HTTPS Support
- Identify Virtual Hosting and Load Balancers
- Analyze Software Configuration
- Spider the site/application
- Application flow charting
- Relationship analysis
- Session analysis
- Automated Vulnerability Scanning
- Information Leakage & Directory Browsing Discovery
- Username Harvesting & Password Guessing
- Command Injection Discovery
- Directory Traversal & File Inclusion Discovery
- SQL Injection Discovery
- Cross-site Scripting (XSS) Discovery
- Cross-site Request Forgery (CSRF) Discovery
- Session Flaw Discovery
- Insecure Redirects & Forwards Discovery
- Exploit identified Enumeration flaws
- Exploit identified Bypass flaws
- Exploit identified Injection flaws
- Exploit identified Session flaws
- Chain exploits together, pivot to other systems, data exfiltration, raid the fridge, etc.
Web Application Cybersecurity Assessment
- Analyzing HTTPS Support
- Analyze Software Configuration
- Crawl the site/application
- Relationship analysis
- Session analysis
- Automated Vulnerability Scanning
- Broken Access Controls
- Cryptographic Failures
- Injection
- Insecure Design
- Security Misconfiguration
- Vulnerable and Outdated Components
- Identification and Authentication Failures
- Software and Data Integrity Failures
- Security Logging and Monitoring Failures
- Server-side Request Forgery
How penetration testing is proposed and conducted is a critical part of overall vulnerability assessment.
The expertise of the assessors is essential to determining what combination of factors or vulnerabilities across systems might result in a successful exploit.
ecfirst works with customers on an individual basis to determine the testing most beneficial to their goals.
A primary goal for external penetration testing is to gain unauthorized, elevated access to an externally-accessible system.
Unauthorized access to other systems is pursued from this initial point, simulating real-world attack strategies.
Gaining Domain Administrator level access is a goal of internal network penetration testing, and how this may be used for unauthorized access to sensitive data.
Penetration testing provides proof of gaps in system configurations, network infrastructure, IT processes or applications.
Penetration Testing can also identify ineffective practices by staff that might lead to breaches and data exposure.
Methodology—External Testing
Reconnaissance - discover publicly available information about the organization to assist with furthering or focusing an attack
- Client personnel & cultural information
- Client business terminology
- Technical infrastructure information
Scanning – identify systems, services, applications and vulnerabilities that may be exploited for access
- Network Discovery
- Network Port & Service Identification
- Vulnerability Identification
- Wireless LAN Discovery/Scanning
- Enumeration
Methodology—Internal Testing
Scanning - identify systems, services, applications and vulnerabilities that may be exploited for access
- Network Discovery
- Network Port & Service Identification
- Vulnerability Identification
- Wireless LAN Discovery/Scanning
- Enumeration
Exploitation - utilizing discovered information, vulnerabilities and/or deficiencies to obtain the goal
- Password cracking
- Discovered credential usage
- Manual & Automated vulnerability validation
- Privilege escalation
- Additional tool installation
- Data discovery
