A penetration test, also called a pen test, is a cybersecurity technique designed to identify, test and highlight vulnerabilities in your organization’s security posture. This authorized and simulated attack on your IT systems enables you to discover any previously unknown vulnerabilities.
The full range of Right Hand’s expertise will try and breach your organization’s defenses to find out if your security environment can be exploited—and what the ultimate cost of a disruption may be. This proactive approach also is designed to help your personnel learn how to handle any type of network break-in from a malicious entity. Once the test is complete, we prepare a detailed audit and fill any existing gaps.
Also known as external penetration testing, in a black box test, the tester is given little to no information regarding the IT infrastructure of your business (perhaps only the name of the company). The main benefit of this test is to simulate a real-world cyber attack where the tester assumes the role of an uninformed attacker. This is often suited for a mature environment where processes for vulnerability identification and remediation are already in place.
Also known as internal penetration testing, in a white box test, the tester has full knowledge and access to your company’s source code and environment. The goal of the test is to conduct an in-depth security audit of your business’s system. In addition, a white box text can target specific concerns such as new features in an application or new segments of a network
This is a combination of black box and white box testing techniques. The tester is provided with partial knowledge of the system such as low-level credentials, logical flow charts, and specific hosts or networks. The key purpose is to find potential code and functionality issues. The grey box test presents a good idea of what a targeted attack may look like, without requiring the tester to spend significant time collecting information.
First, Right Hand defines the scope and goals of the test, including the systems to be addressed and the testing methods to be used.
The next step is to understand how the target application will respond to various intrusion attempts. This is typically done using either Static Analysis (inspecting an application’s code to estimate the way it behaves while running) or Dynamic Analysis (inspecting an application’s code in a running state).
This stage uses web application attacks to uncover a target’s vulnerabilities and then exploit them. The attacks may include DoS or denial-of-service, (making a machine or network inaccessible to intended users), cross-site scripting (injecting malicious code into a vulnerable web application), SQL injections (using malicious SQL code for backend database manipulation to access information not intended to be displayed), or backdoors (malware that negates normal authentication procedures to access a system).
The goal of this stage is to see if the vulnerability can be used to achieve a persistent presence in the exploited system—long enough for a bad actor to gain in-depth access. This stage imitates an advanced persistent threat, which can stay active in a system for prolonged periods to steal sensitive data and cause further damage.
The results of the penetration test are compiled into a report detailing the specific vulnerabilities exploited, the sensitive data accessed, and the length of time the tester remained in the system undetected. This information is then used to patch vulnerabilities and protect against real future attacks.
Once the testing is complete, all traces of tools and processes used during the previous stages are removed to prevent a real-world threat actor from using them as an anchor for system infiltration. During this stage, remediation begins on any issues found in a company’s security controls and infrastructure.
Most cybersecurity firms do 1 thing for your business. We do 3 – which makes us unique.
Most cybersecurity firms focus on one issue in your IT infrastructure such as network monitoring, creating backups, or disaster recovery. They see only a small piece of your business. We take a strategic look at the whole picture. In today’s interconnected world, managing cybersecurity should not be done in silos. Our high-level experts provide broad, integrated solutions that can meet all of your security needs.
We build a cybersecurity culture, and process plays a key role. We start with onboarding and get well-acquainted with you and your business. Then we move to a system and priority review, followed by a gap analysis. Next, we establish a roadmap and timeline for remediations. We continue to meet with you to offer guidance and assess progress.
Unlike other cybersecurity firms, we don’t hand you a report or assessment and walk away. We meet with your IT and executive teams, explain your situation clearly, listen to your priorities, and show you the solutions. We believe in governance-driven results–evaluating the performance of the measures taken and continually making improvements that align with your business goals.
Right Hand Technology Group is CompTIA Security Trustmark+™ certified and has been ranked as one of the top Managed Service Providers in the world. Our experienced staff of Cybersecurity Professionals and Security Engineers have been working with various industries on cybersecurity for more than 20 years.