Sometimes, you don't need a full penetration test. Vulnerability assessments are an excellent alternative and a great starting point. Vulnerability scans search your systems for known vulnerabilities and misconfigurations without actually attempting to exploit them. The goal is to provide a strategic resolution roadmap based on the vulnerability criticality.
All testing performed is based on the NIST SP 800-115 Technical Guide to Information Security Testing and Assessment, OWASP Testing Guide (v4), and customized testing frameworks.
• Planning – Customer goals are gathered and rules of engagement obtained.
• Discovery – Perform scanning and enumeration to identify potential vulnerabilities, weak areas, and exploits.
• Attack – Confirm potential vulnerabilities through exploitation and perform additional discovery upon new access.
• Reporting – Document all found vulnerabilities and exploits, failed attempts, and company strengths and weaknesses.
How Can We Help You Improve Your Security?
Want to discuss how Bastion Cyber Group can help you improve your information security needs? Give us a call, send us an email, or complete the contact form below.