Network Testing

The goal of network testing is to simulate a hostile attack in order to discover vulnerabilities. Our ethical hacking team will conduct manual testing in conjunction with using a host of commercial, open source, and internally developed tools to identify known and unknown vulnerabilities. The following criteria will be applied to all penetration tests.

Summary of Testing (non-exhaustive):

  • Cross Site Scripting (XSS) Flaws

  • Injection Flaws

  • Malicious File Execution

  • Insecure Direct Object Reference

  • Cross Site Request Forgery (CSRF)

  • Information Leakage and Improper Error Handling

  • Broken Authentication and Session Management

  • Insecure Cryptography Storage

  • Insecure Communications

  • Failure to Restrict URL Access

  • Invalidated or Un-Sanitized Input

  • Insecure Configuration Management

  • Network Segmentation Testing

  • Infrastructure Testing

Download Methodology