Penetration Testing :
Assess the technical protection of your critical assets
Preparation and execution of technical audits and high-grade custom penetration tests in accordance with your environment and needs.
Our expertise focuses on SCADA infrastructure pen testing, APT threat simulation, and defence assistance.
We offer three possibilities of penetration testing :
Black-box: the auditors will not be given any knowledge about the audited asset or group of assets so as to place themselves in the position of a malicious third-party
Grey box: the auditors will be given the knowledge of a legitimate user (e.g. valid credentials) so as to place themselves in the position of a malicious user or a third-party that could get this information through a first successful attack
White box: to fully assess the risks of escalation and propagation, the auditors will be given all the knowledge they need (e.g. source codes and configurations) so as to place themselves in the position of a malicious third-party or user that has already compromised part or the entire asset or group of assets
The audited asset, or group of assets, can include one or more of the following:
- Hardened system
- Private network
- Public address
- Web, mobile and native application
- Contactless access control systems
- PMR infrastructure
Customer Benefits
- Ensure your business assets are protected in line with your security policy.
- Identify the potential vulnerabilities and understand the risks involved.