Network and server security testing
Penetration tests
A penetration test is one of the methods for verifying security by controlled attempts to break through security controls. In case of a network-server environment, this involves attacking a particular object, usually defined as a range of IP addresses.
It should be stressed that penetrations tests do not involve only automatic vulnerability scanning and subsequent verification of its results. During a penetration test, the team performing it should analyse the rules on which security controls are based and next try to go round them. Different tools can be applied during this process, but automatic tools should constitute only an auxiliary instrument.
The object to be attacked is agreed on with the Client. Examples of objects include:
- an Internet node,
- the whole IT system as seen from the Internet,
- application’s network-server environment,
- an internal network as seen from its particular point,
- an IT subsystem separated for implementation of specific tasks,
- a wireless network.
The main objective of penetration testing is to identify hardware and software gaps. Nevertheless, when performing such tests it is also possible to:
- verify which services are visible from the Internet or from a particular point of the network;
- verify which types of information about the IT system can be obtained by a potential intruder;
- test the IDS/IPS system;
- try how incident response procedures work in practice.
Methodology
Penetration tests are a service of a special character. On the one hand, the testing staff should be left considerable space for creativity, but on the other, it is necessary to put undertaken activities in order and to aim for the planned objective, i.e. identification of vulnerabilities. Our company’s long experience in security tests has allowed us to develop methods that reconcile these two seemingly contradictory needs.
Get to know more about our approach to penetration tests.