Vulnerability
Assessment Service
Taking a radical new approach to the delivery of Vulnerability Assessment Services, Hytec's very different 3-Level approach assesses an organisation’s vulnerability to attack:
-
from the Internet
-
from compromised DMZs
- from compromised hosts on the internal networks
The requirement
Well-designed security infrastructures, where applications and information are segregated into De-Militarised Zones (DMZs) or Semi-Secure Networks, are now commonplace. However, Hytec believes that penetration testing, which only addresses external Internet-based attacks, does not meet the requirements of such security infrastructures.
For example, web servers are now frequently placed in a dedicated DMZ. What if the web servers become compromised? Could information assets be released? Our experience tells us that these are real risks, but until now few organisations have been able to fully assess their vulnerability to threats, both internal and external.
3 levels of Vulnerability Assessment
In the belief that traditional penetration testing falls short of the requirement, Hytec has developed three different levels of Vulnerability Assessment service. Individually these focus on an organisation’s vulnerability to attack from the Internet, from compromised DMZ’s or from compromised hosts on internal networks.
Same approach as a hacker
In identifying threats, we use the same approach as a potential attacker, namely investigating the network, identifying possible weaknesses and exploiting vulnerabilities. However, unlike attackers we use non-invasive and non-malicious testing to avoid causing any Denial of Service.”
We take a holistic view of a client’s security. To assess the breadth of a client organisation’s security presence, or points of risk, we use creativity allied to our knowledge base of security best practice, known security threats and legislative requirements.”
Frequency of testing
Security
infrastructures need testing at regular intervals
to ensure they remain effective and correctly
managed.
Hytec's Vulnerability Assessment Service is for
organisations seeking to understand their exposure
to Information Security risks and breaches. We use the same approach as a potential attacker,
namely:
- Investigating
the network
- Identifying
possible weaknesses
- Exploiting
vulnerabilities.
Clients
can tailor the service to their specific needs.
For example, it is normal to undertake the investigation
stage a number of times whilst perhaps performing
the other tasks less frequently. We can
also undertake assessments over any period of
time, accurately depicting the actions of a skilled
attacker, who will act slowly and deliberately
to avoid alerting Intrusion Detection Systems
(IDS).
Different from Penetration Testing
This is a very different approach to that of penetration
testing, which often fails to identify vulnerabilities
due to high traffic densities triggering IDS systems. With Hytec's Vulnerability Assessment, the investigation
is undertaken in a non-invasive manner. Your network
infrastructure is targeted but not penetrated,
and no client information is obtained.
Service deliverables
An initial report is produced, highlighting:
- Ports
open.
- The
Services behind open ports.
- Version
numbers of any identified software providing
the Services.
- Identified
vulnerabilities with the software versions,
including details of where to obtain information.
- Susceptibility
to illegal or mal-formed packets.
We
then identify security weaknesses, using invasive
testing to determine the nature of vulnerabilities,
without causing any Denial of Service (DoS).
In effect, we are looking to see whether, and
how, potential vulnerabilities can be exploited.
Each vulnerability is then documented, together
with an analysis of risk and details of whether
the vulnerability is demonstrable and repeatable.
|
