Penetration Tests
What are Penetration Tests?
Penetration tests are part of the risk assessment process, in which offensive tests are performed on a computer system, network, or application to reveal vulnerabilities that can lead adversaries to exploit them. Such events might cause significant reputational and financial damages for organizations.
Following the penetration tests, it is possible to assess the risk level for cyber-attacks and provide an effective remediation plan that will mitigate the risks.
How Can Penetration Tests Help My Organization?
Performing penetration tests have a variety of benefits for IT directors, information systems, and information security managers:
- Increase the level of confidence to secure digital data.
- Comply with laws, regulations, and rules.
- Encourage the organization’s senior management to allocate resources for cyber-security.
- Decrease the chances for reputational and financial losses due to cyber-attacks.
Blackbox vs Graybox Penetration Tests
Penetration tests simulate real-life attack scenarios. Therefore, it is essential to perform them in accordance with the level of knowledge that is given on the system:
- Blackbox: This pentest examines a typical attack scenario where adversaries do not have any knowledge about the system. Therefore, they must bypass the first line of security controls to the system, such as login interfaces. Use our free tools to perform Blackbox tests.
- Graybox: This pentest examines an attack scenario in which adversaries have bypassed the first line of security controls, such as login interfaces or were already granted access as system’s users (AKA “insiders”).
Clear Gate suggests combining the Blackbox and Graybox while performing the penetration tests. This combination will allow the organization to understand better how well systems are protected against common scenarios.
How We Perform The Penetration Tests?
- We are evaluating the scope of work for Blackbox and Graybox testing.
- We are planning the tests by setting the appropriate tools according to the tested platforms.
- We are performing a Blackbox penetration test using automated tools and manual tests, without any knowledge regarding the system.
- We are conducting a Graybox penetration test using automated tools and manual tests, with some knowledge regarding the system.
- We are writing the results report with the findings and remediation steps.
- After the customer applies the remediations, we are performing a recheck to validate that the system is secure and that the remediations were properly applied.
Our Services
Web and Mobile Applications Testing
The tests are based on the Open Web Application Security Project (OWASP) Testing Guide, using automated and manual methods to discover commonly found vulnerabilities in mobile and web applications. The tests cover both client and server sides, including web services and APIs.
IT Infrastructure Testing
The tests examine cyber-security topics that are related to infrastructure (e.g., computers, network devices, security devices, etc.) and based on Mitre’s ATT&CK matrix and on PETS Technical Guidelines. The tests can be originated both from internal and external networks towards the cloud, wireless, Ethernet, and remote access networks.
Breach and Attack Simulation
We manually simulate sophisticated cyber-attacks according to the Cyber Kill-Chain when adversaries deliver malware to evade detection and establish an Advanced Persistent Threat (APT) on the system. The adversary can then move laterally, collect sensitive data, and exfiltrate it. This advanced simulation tests the orchestration of cyber-security controls to mitigate APTs.