PENETRATION TESTING

We offer a variety of penetration testing and security assessment services. These services can be delivered as a one time off or on a recurring basis. The test deliverables contain an executive summary, an in-depth technical report along with mitigation advice.


Vulnerability Assessment

A vulnerability assessment service checks either network components (firewalls, routers, servers, IoT devices, endpoints, etc.) or web application components (websites, portals, restricted web access systems, etc.). The goal of the service is to find loopholes in security, which would allow an intruder to gain unauthorised access or do any damage to a system.

 

Network Penetration Testing

This is a security testing service that focuses on finding vulnerabilities, misconfigurations and other flaws in your networks, infrastructure and overall architecture (i.e. server services, network protocols, operating systems and any other IP enabled components). In this service, we try to exploit vulnerabilities in order to gain full access to vulnerable systems. In a network vulnerability assessment, which is a cost effective alternative to a network penetration test, we only report on the flaws without actively exploiting them.

 

Web Application Penetration Testing

More than 70% of all technical attacks are aimed at the web application layer. This service examines your web applications from a coding and implementation flaw perspective, but also looks at issues like SQL injection, local and remote file inclusion as well as cross-site-scripting (XSS). It involves attempts to actively exploit vulnerabilities in order to gain access to the web application, underlying database services and hosting server system itself. In a web application vulnerability assessment, which is a cost effective alternative to a web application penetration test, we only report on the flaws without actively exploiting them.

 

Mobile Application Penetration Testing

Hardly any market is growing faster than mobile applications. This service covers all threat vectors concerning mobile apps. The audits contain application runtime analysis, traffic & encryption flaws, insecure storage, code signing, memory protections, fuzzing and exploitation. We will test your Android and iPhone mobile applications to make sure they cannot be compromised. We can also include backend servers, communication channels and APIs in the testing.

 

Wireless Penetration Testing


WiFi is no longer just a “nice to have” but has become a mission critical component to many businesses. The wireless penetration testing service covers all threat vectors of wireless networks. Our audits contain attempts to crack wireless encryption and authentication mechanisms, include the set up of rogue access points along with test phishing portals, a variety of man-in-the-middle (MITM) attacks, Denial of Service testing and Bluetooth security tests.

 

Social Engineering Services

Often security is breached despite the fact that the latest perimeter defences are in place. Why? An employee may simply plug a USB stick in, which claims to contain Amazon vouchers. Or the users brought their own infected device into the corporate network, clicked on a malicious PDF or simple visited a malware website as he/she thought the email instruction to click on that link came from the manager. Could your staff be tricked that way? Our social engineering services can find out.

 

Download Flyer and Sample Reports

 

ABOUT PENETRATION TESTING

A penetration test is a method of evaluating computer and network security by simulating an attack on a computer system or network from external and internal threats. The same tools, know-how and methodologies are being used, as malicious hackers would employ. The difference to a real attack is the fact that testing is done with the explicit written consent of the client and the purpose is to produce a comprehensive report and to close down security holes, before a real attacker can exploit them.

Why should you get regular penetration tests or infrastructure security testing?  What would happen if a competitor or hacker would steal your digital assets?  What legal consequences and lawsuits would a security breach have for you?  What financial implications would you face if your IT systems are taken down?  What reputational damage would a successful hack pose to your business?  Did you know that 90% of all deployed IT systems have vulnerabilities?

Penetration testing and vulnerability assessments can take many forms.  Types of penetration testing include: network testing, web application testing (web app penetration testing), wireless network testing, mobile application testing, source code security reviews, and more. With offices and testers in London and Brighton, UK, and testers also located in USA, PrimoConnect can test onsite as well as well as remotely. We believe we can provide the most thorough security audit Hove has to offer, the most thorough security audit Brighton has to offer, the most thorough security audit Sussex has to offer, the most thorough security audit London has to offer, the most thorough security audit UK has to offer, the most thorough security audit Europe has to offer and the most thorough security audit the world has to offer! The depth and experience of our offensive security expertise is second to none.

Our excellent and supremely qualified, experienced and certified team as well as our comprehensive reporting including both board-level executive summary and in-depth technical detail set us apart from the competition.