Penetration Testing | Peace of Mind from Green Duck, Suffolk

PENETRATION TESTING

Now Provided By

LABSEC PART OF THE GREEN DUCK FAMILY

Labsec has recently been incorporated into The Green Duck Family.

This means we can offer our customers a single point of contact for all IT support through Green Duck IT, cybersecurity services through Labsec and Website, Software and App design and development through Source Code Studio.

The Green Duck Family

The Green Duck Family offer comprehensive solutions across three technology divisions, offering IT support and solutions, Cyber Security and Software development. All of our divisions take the same approach to our customers; offering a partnership based on a commitment to top-level service and innovative products delivered by our highly accredited people who are motivated to give you precisely what you need. Our dedication, diligence and honesty are why we have been the first call for technology solutions since 2002.

HOW IT WORKS

Our CREST accredited testers use the same tools and expertise that career criminals use to simulate an attack on your organisation. The purpose of a Penetration Test is to identify vulnerabilities that could be exploited. They’re the most effective way of showing how attackers could breach your organisation and the likelihood of it actually occurring.

LSI-13-1

PLANNING & INVESTIGATION

This phase will involve planning and gathering intelligence which will help us identify how we’ll be targeting our simulated attacks, and will include mapping high value assets such as employee, customer and technical data as well as internal and external threats.

LSI-14

EXPLOITATION OF VULNERABILITIES

With a map of all possible vulnerabilities, we’ll then begin the simulated tests on your entry points. Our goal will be to see how far we can get into your environment, identify any high-value targets, and avoid detection.

LSI-15

ANALYSIS & REPORTING

While Penetration Testing is a complex activity, our analysis and reporting isn’t. We’ll highlight security vulnerabilities and areas that could be exploited. We’ll also provide guidance on remediation, with a clear focus on preventative countermeasures.

WHAT IS INVOLVED

Aside from discovering vulnerabilities before criminals do, there are other benefits to a penetration test. Regular penetration tests are required by some industries to comply with security standards and help you avoid fines for with non-compliance. Some businesses will also require you to demonstrate that you have this compliance in place before they will work with you.

There are three types of penetration test available:

  • Network and infrastructure – this is a test of your external facing IP’s, router firewalls, email servers and other ports and also covers your endpoints, servers and access points
  • Applications – this is a test on your websites, CRM, login systems, intranet and mobile applications and other applications your business uses
  • Social engineering – we test this with phishing, vishing, physical entry and tactics such as USB drops

OTHER SERVICES FROM LABSEC: