Network Security

Common Questions

Network penetration testing performs a rigorous security audit of IP-enabled devices on a network. The process begins with reconnaissance at which time your network will be scanned for devices and services. All discovered services will then undergo a basic vulnerability assessment that will check for any known weaknesses. This information is then compiled, analyzed, and probed further by an experienced WSI professional to determine potential points of weakness in systems and networks. Once these points are determined, network-based attacks are mounted in an attempt to bypass network security measures and compromise systems. All compromised systems will be analyzed for sensitive data or exposure to further network attacks. Clients will receive professional reports on general discovery, points of vulnerability, technical details, recommendations, and verbose technical reports. Contact us today for a free estimate to begin securing your systems.

What network penetration testing packages does WSI use?

Zero-Based: The Zero-Based penetration test gives the best perspective of what a hacker may discover about your network. The goal of Zero-Based testing is to discover as much information as possible about an organization's network. The process includes searching through public repositories of information, gleaming technical information about the organization, and using all gathered information to mount an Internet-based digital attack. The Zero-Based approach gives a realistic view of what type of information about your organization is publicly available and how it may be used by a hacker. Zero-Based testing is typically coupled with a full External-Based penetration test.

External-Based: The External-Based penetration test is used to test the security of your network perimeter. This presents a real-world scenario where penetration testers come in from the Internet in an attempt to circumvent security measures and gain access to your internal network. External-Based testing will put your security measures to the test in an attempt to uncover weaknesses in network defense.

Internal-Based: The Internal-Based penetration test takes on the perspective of an internal user on your network. Many networks are designed to have a secure network perimeter, but lack internal controls. This is a serious concern as the highest impact security incidents typically performed from individuals within an organization. An Internal-Based test aids in the discovery of internal network weaknesses and will aid in deterring the risk of insider incidents.

Contact us today for a free estimate to begin securing your systems.

Does WSI offer additional a la carte penetration testing services?

Yes, we offer the following:

Internal-Based: The Internal-Based penetration test takes on the perspective of an internal user on your network. Many networks are designed to have a secure network perimeter, but lack internal controls. This is a serious concern, as the highest impact security incidents are typically performed by individuals within an organization. An Internal-Based test aids in the discovery of internal network weaknesses and will aid in deterring the risk of insider incidents.

Physical Security: Computer security is not limited to the security of your network. Physical security plays a large role in the overall protection of your digital assets. Physical security can be analyzed and tested in addition to the typical network penetration test.

Social Engineering: Even the tightest network security can't protect your digital assets from the weakest link: people. The employees in your organization may willingly give away sensitive information without knowing the consequences of their actions. Social engineering will attempt to gain unauthorized information from individuals and test your organization's security awareness.

Wireless Network: Networks are no longer limited to the physical wires within the confines of your walls. Wireless networks have opened up the potential for hackers to infiltrate your internal network from hundreds of feet away. An assessment of your wireless network is an important step in ensuring a due diligence approach to securing your internal network.

Modem Sweep: Right when you think your entire network has been secured top to bottom, hackers find another way into your systems. Any modem attached to a computer in your building may offer a simple, but effective back door for a hacker. Believe it or not, many hackers still gain full access to internal corporate networks through insecure modem connections.

Contact us today for a free estimate to begin your a la carte penetration testing.

I am looking for a less robust review of my network's security, what does WSI offer?

WSI offers limited external and internal vulnerability assessments. These amount to a more simplified scan and check for vulnerabilities. This does not include actually determining what happens if the vulnerability is exploited.

External-Based: An external-based vulnerability assessment tests the security stature of your network and computer systems from the Internet. A vulnerability assessment will perform reconnaissance on your network and check for vulnerabilities and holes in your network and host security. All discovered vulnerabilities will be checked, analyzed, and reported back in a useful format.

Internal-Based: The internal-based vulnerability assessment tests the security of your network from the inside. Internal assessments are important as many organizations spend their time on perimeter security and leave the internal network wide open. Internal assessments help discover network and system vulnerabilities that may be exploited by hackers, viruses, and disgruntled employees. Like the external-based assessment, all vulnerabilities discovered will be checked, analyzed, and reported back in a useful format.

Contact us today for a free estimate to begin securing your systems.

My business is not located in Iowa, but I would like to work with WSI to improve my company's network security, how could you work with me?

Our certified network security consultant is able to work with you and your staff remotely or make arrangements to be on-site at your facility when needed. Much of the all important planning and budgeting for a network security engagement can be conducted from our offices in Iowa. A significant amount of the actual work also needs to be conducted externally, in the same manner a hacker would. Through the power of VPN's and video conferencing we are able to eliminate most of the costly travel associated with bringing in this type of expert. However, WSI is able to be on site as needed.

Contact us today for a free estimate to begin securing your systems.