External Network Penetration Testing—From the Outside In
External Network Security Assessment utilizes a risk-based approach to manually identify critical infrastructure vulnerabilities that exist on all Internet-accessible services within scope. The External Penetration test focus on exploiting internet accessible infrastructure and services including Networks/Firewalls, Web Servers, Email Servers, Public Facing Servers, VPN, IP Sec End Points, DNS, DMZ, Modems, Routers, Switches, & Other Network Hardware, Online Services, Applications, RDP (Remote Desktop Protocol), HTTP / HTTPS (SSL). The primary goals of this assessment are to:
Provide management with an understanding of the level of risk from Internet-accessible services.
Provide recommendations and details to facilitate a cost-effective and targeted mitigation approach.
Create a basis for future decisions regarding information security strategy, requirements and resource allocation.