- Management Team
- Security Team
- Advisory Board
Onion Skin Approach
We recommend an in-depth and comprehensive testing the entire network structure, especially if that network hasn’t gone through security testing in a while. A comprehensive test takes a four-layer approach; where our specialized Red Team would start on outside and gradually make their way into the core of the network, peeling off one layer of security at a time.
This is an off-site, non-exploitative test of individual internet protocol that addresses nodes owned or controlled by your organization. To perform this test, you must designate the IP addresses that you want tested. This is usually done with automatic scanners.
External Penetration Testing
This test will exploits the vulnerabilities to determine what information is actually exposed to the outside world. It mimics what an outside hacker would do to exploit weaknesses in the application’s security without the usual dangers. It also identifies weaknesses in the external IT systems that could be used to disrupt confidentiality, availability or integrity of the network, thereby allowing your organization to fix them.
Internal Penetration Testing
This is an exploitive test to determine what vulnerabilities are present behind the firewall. It identifies weaknesses in the internal IT systems.
Source Code Audit
A software code audit is a comprehensive analysis of source code in a programming project with the intent of discovering bugs, security breaches or violations of programming conventions. During a Source Code Security Audit, experts manually inspect the source code of your new or existing application on a line-by-line basis, for security weaknesses, review authentication, authorization, session and communication mechanisms. They will identify issues that could result in unauthorized access or leaking of sensitive information. The audit can be done immediately post-deployment but we recommend that you incorporate us in your SDLC for a better and secured development process.