The purpose of this type of testing is to provide clients with a level of confidence that their Internet and LAN infrastructure is secure
External penetration tests:
verify if unauthorized access can be gained via the external network components by a hacker having limited or no previous knowledge of the network.
Internal penetration tests:
determine which level of unauthorized access can be gained by an internal attacker who already has access to the internal network. Test if the ‘crown jewels’ of your business are protected against internal attackers.
1. Gather information about your organization and your systems from:
2. Identify and analyze the machines exposed to the Internet for:
3. Iteratively scan for vulnerabilities (operating system and services):
4. Exploit the identified vulnerabilities in order to gain unauthorized access to systems or data: