Vulnerability Assessments
How Vulnerable Are You?
No application is perfect. They all contain flaws or vulnerabilities that can be exploited. Attackers exploit these vulnerabilities and use them to penetrate your networks.
One defence against this is to identify these vulnerabilities first and mitigate them. A vulnerability assessment is a scan of the target environment using automated software tools. The tools look for currently known software vulnerabilities. This also includes software on products such as switches, routers, and servers.
Shearwater Ethical Hacking uses best-of-breed vulnerability scanners to perform all of our vulnerability assessments. These include a combination of both commercial and freely available tools to get the best possible coverage and outcome.
Vulnerability assessments can have a specific focus:
- Network - This assessment focuses on the hosts within a network and the devices connecting the network to find network vulnerabilities.
- Web Application - This assessment focuses on web applications and can include testing the OWASP top 10 vulnerabilities, to testing the application as both an unauthorised or authorised user.
- Virtual Platform - Virtual environments have exploded onto the scene in recent years and bring some unique challenges. This assessment checks your virtual environment and its host configurations to ensure they comply with security best practices.
- SQL Database - Databases contain some of the most sensitive data within an organisation. Shearwater Ethical Hacking will deploy software to test the sensitivity of your database contents as well as check the security settings within the Systems.
- PCI ASV - Shearwater Ethical Hacking can provide compliance scanning of Internet facing resources as well as internal vulnerability scans addressing the Payment Card Industry Data Security Standard (PCI DSS) requirements.
- Wireless - Test for the presence and security level of wireless access points and detect unauthorized wireless access points.
For more information please contact us on 1300 228 872 or via email:
