Wireless Penetration Testing

An insecure Wi-Fi network opens up your organisation to a myriad of
attacks that could compromise your critical information.

What is a Wireless Penetration Test?

A Wireless Penetration test is an authorised hacking attempt, which is designed to detect and exploit vulnerabilities in security controls employed by a number of wireless technologies and standards, misconfigured access points, and weak security protocols.

Benefits to your business

Ensure Compliance with PCI DSS and other security standards
Audit security monitoring procedures and incident response tactics
Detect vulnerabilities, misconfigured wireless devices, and rogue access points
Reduce the risk and legal ramifications of a business breach
Harden the wireless access path to your internal network
Get independent security verification – of encryption and authentication policies – for devices interacting with your wireless network
Prevent unauthorised use of your wireless network as a pivot for cyber attacks, which may be traced back to your organisation
Provide management with a proof of exploit, which outlines the assets that an attack can compromise; such as, compromising critical data or gaining administrative level rights over routers and switches

Shearwater’s Wireless Penetration Testing Methodology

Reconnaissance and Analysis

Shearwater Ethical Hacking (SEH) will identify wireless access points and clients. The information gathered will be assessed to determine encryption technologies, wireless standards, and vendors.

Attackers typically use this broadcasted access point information to launch automated attacks against a corporate wireless network(s).

Testing and Exploitation

Utilising the information and standards identified in the analysis phase, various aspects of the wireless security controls are tested to find potential vulnerabilities.

Our team will then attempt to exploit the identified vulnerabilities and take maximum advantage of the vulnerable wireless service. This will provide your organisation with the ability to determine and produce an accurate threat and risk assessment.

If we are unable to successfully compromise the wireless network, we will attempt to compromise information that wireless devices broadcast inadvertently.

Reporting and Post Exploitation

After completion of the testing phase, Shearwater will issue a thorough report which lists the vulnerabilities and exploits categorised according to risk level. Alongside this will be recommendations for mitigation strategies based on Shearwater’s key insights into the cyber-threat landscape.

SEH can also conduct debriefing sessions targeting two separate audiences: a technical debriefing aimed at system administrators and engineers, and an executive debriefing tailored for the technology management group.

The management session provides the information needed to determine the appropriate risk management strategy. The technical briefing is intended for knowledge transfer – of the lessons learned during the penetration test – to the technical personnel.

Shearwater: The Gold Standard in Penetration Testing

Here is how we raise the bar:

Penetration_Testing_Comprehensive_Reporting

Comprehensive Reporting
Shearwater offers in-depth executive level reporting which serves as a risk minimisation tool for management, and a technical document – listing vulnerabilities prioritised according to risk level – for the internal security team. The report also provides access to mitigation strategies based on Shearwater’s key insights into the cyber-threat landscape.

Penetration Testing Post Engagement Followup

Post Engagement Follow Up
Our post engagement follow-up is an additional benefit that allows clients to engage us with questions, or seek guidance on issues referred to in our report.

Testing Standards
The Open Web Application Security Project (OWASP)
The National Institute of Standards and Technology (NIST)
Source Security Testing Methodology Manual (OSSTMM)
Penetration Testing and Execution Standard (PTES)
Penetration Testing Framework
Australian Government Security Policies and Guidelines

Customer Centricity
We listen to our clients to understand their goals. Our team also alerts security staff – in real time – to critical vulnerabilities and threats discovered.

Our Certifications

Request a FREE Consultation

Call us on 1300 228 872 or submit the form below

Wireless Penetration Testing

An insecure Wi-Fi network opens up your organisation to a myriad of
attacks that could compromise your critical information.

What is a Wireless Penetration Test?

Benefits to your business

Shearwater’s Wireless Penetration Testing Methodology

Shearwater: The Gold Standard in Penetration Testing

Here is how we raise the bar:

Our Certifications

Compliance

Penetration Testing

Managed Services

Phishing Prevention

Company

Subscribe to Our Security Updates

Search for products or services

Wireless Penetration Testing

An insecure Wi-Fi network opens up your organisation to a myriad of attacks that could compromise your critical information.

What is a Wireless Penetration Test?

Benefits to your business

Shearwater’s Wireless Penetration Testing Methodology

Shearwater: The Gold Standard in Penetration Testing

Here is how we raise the bar:

Our Certifications

Compliance

Penetration Testing

Managed Services

Phishing Prevention

Company

Subscribe to Our Security Updates

Search for products or services

An insecure Wi-Fi network opens up your organisation to a myriad of
attacks that could compromise your critical information.