The External Network Assesment will assess the exposure and vulnerability of your public facing network. It will also examine the architecture accessible through those machines.

Package Points:

• "Black Box" penetration testing of public facing network and related network architectures.
• Analysis of how any externally exploitable security vulnerabilities my be used to gain access to internal networks.
• Review of incident response and handling mechanisms, intrusion detection systems, and other facilities for defense against attack.
• Non-damaging examination of network vulnerabilities to forms of denial of service attacks which may be avoidable.
• Analysis of how any other data gained through public records, social engineering of staff and other methods could be used to gain access to internal networks.

Methodology:
An external network assesment provides an account of what a malicious party could achieve from outside the network. It details the available methods hackers could use to break in, as well as the systems to which they could gain access. All our staff have access to a private vilnerability database and collection of proof of concept exploits. Testing is performed by professionals who specialize in penetration testing and many of whom discover new vulnerabilities in commercial software on a weekly basis whilst performing penetration tests. Final analysis provided in a detailed report suitable for augmenting a currently existing security program or establishing a new program.

Secure Information Handling Seminars augment network audits by teaching real world techniques on how to protect information. Many computer network breaches occur because of inside information unknowingly disclosed to an attacker. These seminars can be presented to groups ranging in size from two to the entire workforce.

• Package Points:
• Information gathering activities to glean issues most directly related to your firm.
• Lectures on safe information handling.
• In-depth social hacking discussions and explanations.
• Question and answer session for all attendees.

Methodology:

• Lectures given by professionals schooled in the information gathering techniques used by hackers, private investigators, and government agencies.
• Discussion of what types of knowledge is valuable and how to protect such information.
• In depth lecture series by specialized staff focusing on those issues but still examining a wide range of topics.
• Workplace walk-through for management, pointing out potential problem spots.
• Booklets for staff, reinforcing the discussed techniques.