Internal Pen-Test - SecureState, Information Security Assessment and Protection

Internal Pen-Test

Internal security mechanisms are typically less restrictive than externally facing networks. Security is often not a major concern internally, which can be disastrous. More often, “soft” or weak hosts are targeted to gain access to information. There are many ways an attacker can get inside your internal network, including corporate espionage, disgruntled employees or a hacker.

Why we're the best:

SecureState takes the next evolutionary step in internal vulnerability assessments, combining multiple elements to provide a wide-array of assessments covering every internal aspect
Our experienced professionals have tested environments across various industries, giving them the advantage of knowing and understanding every environment they encounter

What we do:

1. Enumerate Internal Network

Once plugging into the internal network, SecureState's consultants will discover and map your network to enumerate information from your internal systems.

2. Sweep Specific Systems

This involves determining and targeting specific areas to attack.

3. Manually Attack Specific Systems

Once outlining those systems SecureState's consultants will manually attack and penetrate the systems identified, to find vulnerabilities and the risks that they carry.

4. Pilferage Systems

5. Vulnerability Linkage Theory

SecureState's Vulnerability Linkage Theory is the thought that all vulnerabilities within a system are linked and can be exploited together.

What you get:

1. MyState Portal

For 60 days, you will have full access to SecureState's secure MyState portal. This portal will provide up to the second findings, as well as mitigation support throughout your SecureState experience.

2. Final Report (Exec Summary / Walk Through)

Upon completion of the penetration tests, SecureState's consultants will meet your security and executive team to walk through our findings. We will also present a detailed road map to fix any vulnerabilities found.

3. Visio Diagram with Attack Linkage

This diagram describes SecureState's Vulnerability Linkage Theory. It is a detailed graphic that shows SecureState's attack path.

4. Matrix of Findings

5. Mitigation Assistance

For more information download the PDF version of Attack & Penetration

SecureState is successful during 100% of internal penetration tests... Is your company open to attack from the inside?

Why not just do Internal Scans?

SecureState has found that running vulnerability scans on internal systems (unless part of a regulation requirement) do not identify any meaningful vulnerabilities. Rather these activities soak up time and do not give you an accurate measure of the risk to your internal systems.

SecureState applies the following techniques to ensure every security aspect is covered:

• Attack and Penetration
• System Level Interrogation
• Firewall/Router
• DMZ Architecture
• Internal Network Architecture
• Information Security (INFOSEC)
• PCI Compliance Onsite Assessments
• Physical Penetration

Did you know???

• An internal attack and penetration is required by Visa PCI and MasterCard. SecureState is certified in both.
• Exploits are being released everyday
• Last year was a record high for public exploit release
• It’s easier than ever to compromise a host
• Internal networks are the least secured area.
• During an attack and penetration we succeed 98% of the time
• Our SecureState team members have given security training to members of the N.S.A.