Objective-based Penetration Testing
Objective-based Penetration Testing takes conventional penetration testing a step further and assesses the security within your organization through simulating a more realistic cyber-attack. Rather than defining a scope of targets, objectives are defined, for example: obtain access to high-security network or access to sensitive information.
Evaluate the effectiveness of your IT security program.
During this engagement, Packetlabs will attempt to achieve the objectives through using a number of advanced attack techniques in order to find the weakest link. The primary objective of this type of testing is to evaluate the overall security of your organization, and the effectiveness of your incident response process.
Packetlabs’ Objective-based Penetration Testing service offering takes a three-pronged approach to assess people, process and technology. We have aligned test techniques to each of these areas in order to effectively validate the security of your most sensitive information.
To achieve each the defined objectives, the following attack types may be performed:
INFRASTRUCTURE
SOCIAL ENGINEERING
DEVICE PLANTING
APPLICATION
E-MAIL PHISHING
TAILGAITING
WIRELESS
USB DEVICE DROPS
CARD CLONING
What We Deliver
At the conclusion of the engagement, a detailed report is prepared outlining the findings identified, coupled with recommendations to enhance the security within the environment. Each objective is thoroughly documented with an attack narrative to illustrate how it was achieved and the timeline of events. Putting the pieces together, we perform root-cause analysis and provide both tactical and strategic recommendations.
Related Resources
May 10, 2016
PCI COMPLIANCE TESTING METHODOLOGY
Packetlabs’ security testing methodology is based on industry standards and is primarily aligned with NIST SP800-115 to ensure compliance with most regulatory requirements.
101000110010101001001110010110010100010100101111001010100000001
