Vulnerability Scanning
Not all companies require a penetration test to successfully evaluate their security posture. Regular vulnerability scans are often an alternative. A specialist performs vulnerability scanning to search systems for known vulnerabilities without exploitation attempts with an end goal of providing a remediation report prioritized on risk.
Our Methodolody
All testing performed under this service are based on the NIST SP 800 - 115 Technical Guide to Information Security Testing and Assessment, OWASP testing Guide (v4) plus other customized testing frameworks.
PLANNING
Customer goals are gathered and rules of engagement obtained.
DISCOVERY
Perform scanning and enumeration to identify potential vulnerabilities, weak areas and exploit.
REPORTING
Document all found vulnerabilities and exploits, failed attempts, company strengths and weaknesses.