Penetration Testing | Peace of Mind from Green Duck, Suffolk

PENETRATION TESTING

Now Provided By

LABSEC PART OF THE GREEN DUCK FAMILY

Labsec has been providing penetration testing since 2002 and has been recently incorporated into The Green Duck Family.

This means we can offer our customers a single point of contact for all IT support through Green Duck IT, cybersecurity services through Labsec and Website, Software and App design and development through Source Code Studio.

The Green Duck Family

After Green Duck was hatched back in 2002, it has seen rapid expansion due to a combination of hard work and great customer service. The co-founders Mathew Green and Graham Duckworth looked to the future and brought new related businesses under the wing of Green Duck. This lead to the incorporation of Labsec and Source Code Studio to provide service unrivalled by competitors.

HOW IT WORKS

Our CREST accredited testers use the same tools and expertise that career criminals use to simulate an attack on your organisation. The purpose of a Penetration Test is to identify vulnerabilities that could be exploited. They’re the most effective way of showing how attackers could breach your organisation and the likelihood of it actually occurring.

LSI-13-1

PLANNING & INVESTIGATION

This phase will involve planning and gathering intelligence which will help us identify how we’ll be targeting our simulated attacks, and will include mapping high value assets such as employee, customer and technical data as well as internal and external threats.

LSI-14

EXPLOITATION OF VULNERABILITIES

With a map of all possible vulnerabilities, we’ll then begin the simulated tests on your entry points. Our goal will be to see how far we can get into your environment, identify any high-value targets, and avoid detection.

LSI-15

ANALYSIS & REPORTING

While Penetration Testing is a complex activity, our analysis and reporting isn’t. We’ll highlight security vulnerabilities and areas that could be exploited. We’ll also provide guidance on remediation, with a clear focus on preventative countermeasures.

WHAT IS INVOLVED

Aside from discovering vulnerabilities before criminals do, there are other benefits to a penetration test. Regular penetration tests are required by some industries to comply with security standards and help you avoid fines for with non-compliance. Some businesses will also require you to demonstrate that you have this compliance in place before they will work with you.

There are three types of penetration test available:

  • Network and infrastructure – this is a test of your external facing IP’s, router firewalls, email servers and other ports and also covers your endpoints, servers and access points
  • Applications – this is a test on your websites, CRM, login systems, intranet and mobile applications and other applications your business uses
  • Social engineering – we test this with phishing, vishing, physical entry and tactics such as USB drops

OTHER SERVICES FROM LABSEC: