|
As the UK's leading Penetration Testing company, Nettitude has been carrying out Security Testing engagements for a broad range of public and private sector companies many years. Our depth and breadth of experience enable us to deliver high quality Consultancy Led engagements that both identify all areas of penetration whilst also providing appropriate remediation recommendations so that you can tighten your overall security posture.
Nettitude's Penetration Testing (Pen testing) Services respond to your business needs.
>White Box Testing
In a White Box test, clients provide Nettitude with information about the applications and infrastructure prior to the commencement of the testing engagement. Usernames and passwords are provided to Nettitude's testing team as part of the engagement, and the client may provide us with access to source code. In this type of testing engagement, Nettitude works closely with the client to perform the assessment. These types of tests tend to gain deeper understanding of the application and infrastructure logic, and may generate more comprehensive test results than other penetration testing approaches.
>Black Box Testing
In a Black Box test, the client provides Nettitude with no information about their infrastructure other than a URL or even just the company name. Nettitude is tasked with penetrating the environment as if they were an external attacker with no information about the infrastructure or application logic that they are testing. Black Box tests tend to take longer to commission than White Box tests and may identify less exposures and vulnerabilities than those of White Box tests.
>Grey Box Testing
A Grey Box test is a blend of Black Box testing techniques and White Box testing techniques. In Grey Box testing, clients provide Nettitude with snippets of information to help with the testing procedures. This results in a more focused test than in Black Box testing as well as a reduced time line for the testing engagement.
To find out more about how Nettitude can help you with your Penetration Security Testing requirements, please complete our contact form, and a Consultant will respond to your enquiry.
|
|
Nettitude can conduct Penetration Tests from any kind of network connection using the latest Penetration Testing tools and techniques. Some of our more common engagements include testing conducted from the following vantage points:
>Internal Penetration Tests >External Penetration Tests >Web Application Testing
Organisations may wish to conduct Penetration Tests that focus on specific types of technologies. Nettitude provides focused Penetration Testing to address individual application security requirements.
Nettitude has strong procedures and methodologies in place for all of their Penetration Testing engagements. As a ISO 27001 certified organisation, Nettitude practices the highest levels of Information Security practice across all of its divisions. In addition, Nettitude is a member of CESG CHECK and CREST, the Council of Registered Ethical Security Testers. We provide comprehensive testing services within FSA, SOX and PCI DSS frameworks, and Nettitude is both a PCI DSS certified ASV and QSA company.
|
