IT-Infrastructure Penetration Tests
Offsite Penetration Tests (external)
Externally accessible IT infrastructures are exposed to a large number of potential attackers. As part of an offsite penetration test, we put ourselves in the role of an external attacker from the Internet to check all exposed IT systems and web applications for vulnerabilities. This allows us to close security gaps before they can be exploited by real attackers.
Our approach to conducting offsite penetration tests is outlined below:
Onsite Penetration Tests (internal)
External attackers could gain access to the internal company network by exploiting a security hole within an exposed system or also through social engineering attacks such as phishing. However, an attack by internal personnel cannot be completely ruled out either.
With an onsite penetration test, we evaluate how well your IT infrastructure is protected against an attack from the internal network. The test is performed using the following procedure:
Active Directory Whitebox Assessment
If Active Directory is used, it is also possible to perform an Active Directory whitebox assessment as part of an onsite penetration test. With the help of provided access data, we check your AD infrastructure for the state of the art. Such an assessment can include the following test points:
- Enumeration of all AD components:
- Forests, Trees, Domains, OUs, Hosts, Groups, Accounts, GPOs, Password information
- Review of operational procedures
- Review of privileged accounts/group membership and regular account hygiene
- Review of forest and domain trusts
- Review of operating system configuration, security patching and update levels
- Verification of domain and domain controller configuration against Microsoft recommended policies
- Review Active Directory object permission delegation key
- Suggest measures for improvement
