We can provide answers to these questions by finding and analysing vulnerabilities in these systems using a combination of industry standards, our own best practice and BS 7799 / ISO 27001. The reports we produce - tailored to your organisation - will inform you of the vulnerabilities and the solutions, so you can address these before the "real" hackers do - or know when a potential attack is taking place so you can block it. Below are our services in this area: |
 |
Systems Security Testing:
Our code review service provides answers to these questions by finding and analysing
vulnerabilities in your application code and server settings. We explain any vulnerabilities
found and help you address the problems and solve them. We use our own tools, vetted hacker tools and
exploits, and of course our know-how to test your system. Commercially available tools are
also used as a first step in analysing your system, but the rest is detailed manual testing. Technologies supported include:
|
|
Mail Server Penetration Testing: Can spammers and hackers play with your corporate mail accounts? Could your mail servers be used to obtain access to the internal network? Could an employee forge an e-mail from his/her boss to payroll authorising them a payrise? We can help you find out and help you secure these systems. In addition to the tests mentioned on the Internet Penetration Testing page, we also identify your mail servers and attempt manual exploits against them (spoofing, relaying and user enumeration). |
Want more information?
- Phone Andy on +44 (0)1273 45 45 25
- Click Here to download our brochure
- Click here to use our contact form
- Click here for the detailed PCI DSS specification
