Practical Information Security

Americas > Caribbean > Europe > Africa >Asia

Français | English | Español
Home
Managed Security
Strategic Consulting
Partnership
Corporate
News
Contact Us

Strategic Consulting

Intrusion Tests
Social EngineeringTrainingAwareness ProgramSecurity PolicyBCPDRPArchitecture ReviewForensic
Above Security > Strategic Consulting > Intrusion Tests

Intrusion Tests


In order to satisfy business communication needs, information networks have grown exponentially, resulting in today's huge data exchange capacity. Unfortunately, this evolution also has a price and negative outcomes were predictable as the rate of computer crime rises. These networks which link you up with your customers and providers, also became a point of connection for hackers.

What is an intrusion test?

An intrusion test is a method of evaluating the security of an information system by simulating an attack by a malicious hacker. It generally aims to highlight the weaknesses of the company's security processes and policies. This analysis is carried out from the position of a potential attacker, by ethical hackers, who are hired and mandated by the company, and can involve active exploitation of security vulnerabilities.

An intrusion test aims to check the ease or difficulty for an intruder to access the company information system. These tests are performed by our security consultants in a safe and controlled environment, by using the same techniques as computer hackers.


Intrusion tests apply to the company's various informational assets like:

External Network
A vulnerability assessment and impact of a potential external attack on all the company servers or devices, which are accessible from the outside, such as Web servers, Domain Name Servers, email servers, VPN access points, perimeter firewalls, routers, etc.

Internal Network
A vulnerability assessment and impact of an intrusive attack performed by a regular user or an intruder, on all the internal servers or devices such as domain controllers, internal Domain Name Servers, internal email servers, Intranet servers, user workstations, internal firewall, etc.

Web Application
A vulnerability assessment of the connection requests to the data bases, dynamic forms, users sessions, authentication and authorizations management, N-tiers applications, etc.

Wireless Network
A vulnerability assessment of potential security gaps or flaws in the design, implementation or operation of the organization's wireless network.

Telephony Network
A vulnerability assessment of the telephony infrastructure such as PBX systems, dial-in modems, Servers with dial-up maintenance, VoIP, wardialing, etc.


Why choose Above Security experts for your information system's vulnerability assessment :

  • Information security does not represent, for our organization, an extension of other services but indeed our first and primary mission. This focus brings to our customers a top level expertise and depth, which cannot be easily equalled on the market.
  • Above Security's team has performed more than 250 security assessments and penetration tests during the last eight years.
  • The expertise that our team has developed, particularly at the application level, makes us a partner of choice for any organization who wishes to obtain the best possible opinion concerning the level of vulnerability of its information assets.

Download

Download our Intrusion Tests brochure

Contact

Contact us to discuss our Intrusion Tests offering

White paper

Risk Management Standards Applicable to an Information Security Management System

Home | Managed Security | Strategic Consulting | Partnership | Corporate | News | Contact Us
© Copyright 2008 Above Security