Penetration Testing
G2’s penetration testing services are an extension of our vulnerability assessment offering. Once the vulnerability assessment is complete and findings are reviewed by our security analysts, attack scenarios are crafted against target systems of interest. Our attacks are targeted to imitate the actions of a real-world sophisticated attacker trying to obtain access to key business systems. By carefully targeting systems related to core business functionality, G2 is able to articulate business impact from security and technical perspective.
Web Application Penetration Testing
Web Applications are increasingly important business enablers to many organizations. Due to their importance and exposure on the Internet web applications must be thoroughly tested and examined for vulnerabilities which could leak critical information or allow an intruder access to internal systems. We use a custom, tried and tested, methodology based on the OWASP testing guidelines. Our testing includes automated scanning for known vulnerabilities that are then manually tested by our staff. Our process ensures each page and variable is tested for SQL injection, Cross Site Scripting (XSS), command injection, inappropriate trust, session weakness and other common vulnerabilities.
Wireless Penetration Testing
Wireless networks are an ever increasing presence in corporate environments as they are an economical and convenient means of networking business resources. Unfortunately, poor security configurations and weak security protocols can easily allow malicious intruders access into sensitive corporate networks. G2 has a thorough methodology designed to evaluate the security posture of your wireless networks. Working with your staff, our experts test your wireless networks by utilizing carefully selected hardware and both public and proprietary software. Our testing will identify all wireless network access points, identify and exploit any tactical weaknesses, and assess the strategic wireless network security posture. We provide remediation steps for each finding and tailored recommendations of industry best practices based on your business needs.
Red Team Assessment
Often, an organization’s real-world security needs do not fit into a well defined service. G2’s Red Team Assessment is a comprehensive assessment of your organization’s security posture. We assess your organization from the position of several types of adversaries and create attack scenarios designed to breach your organization through a variety of means. This offering is specifically designed to test your security staff’s security response processes and procedures and identify potentially risky behaviors your corporate users engage in. By performing this process, sometimes iteratively, we identify often missed security vectors that allow your organization to be compromised. By doing this, we help your organization identify and reduce these attack vectors and incrementally improve your organization’s overall all security posture
|
