by Terry Crowley | Apr 17, 2018 | Penetration Testing
Even if your company has a robust firewall, an intrusion detection system (IDS) and antivirus/anti-malware, hackers can still gain access to your systems and data by exploiting vulnerabilities in your networks. Finding those vulnerabilities before the attackers do...
by Bhaumik Shah | Mar 22, 2018 | InfoSec Strategies, Penetration Testing
If your development teams have moved away from a waterfall approach to a more modern agile or DevOps methodology with frequent releases or continuous integration, how can you ensure and verify application security with just the “traditional” annual penetration...
by Michael Gargiullo | Mar 1, 2018 | Penetration Testing
A penetration test is a deep-dive investigation that returns valuable information when other criteria about your network is already satisfied. Performing a penetration test without good APV management (Asset Management, Patch Management, and Vulnerability Management)...
by Michael Gargiullo | Nov 15, 2017 | Penetration Testing
There are basically three levels of network penetration testing: 1) Security Assessment (Validation) This level of testing is vulnerability-centric. Heavily utilizing automated toolsets, the test starts with a vulnerability assessment and is followed by a manual...
by Terry Crowley | Oct 27, 2017 | Penetration Testing
Thanks to the relentless onslaught of phishing, vishing, ransomware and other types of social engineering attacks, your users are the weak link in your network security. Awareness of this fact is growing, and more and more of our customers want to include social...
by Michael Gargiullo | Aug 18, 2017 | Penetration Testing
Editor’s Note: This post was originally published in February 2014 and has been updated for accuracy and comprehensiveness. I’m still surprised how often our clients want us to perform black box penetration testing on their internet facing systems, instead of...
