Network & Application Penetration Testing

Orthus provide both network and application level penetration testing. Orthus application testing capabilities in particular – used by major banks, insurance companies, pharmaceuticals, transport providers, manufacturers and retail clients – are recognised in the industry and regularly receive media coverage.

Each test is a controlled and managed simulation of an actual system intrusion providing a realistic experience of an attempted break-in, whether from an outside intruder or from an employee or business partner.

During an Orthus penetration test deployed security mechanisms - including intrusion detection and response capabilities - as well as business policies and procedures, are put to the test against a skilled attacker. Every test is different - exactly customised to the devices, operating systems and applications that make up the target infrastructure.

All Orthus testing is carried out in the UK by highly experienced security engineers, each engagement formally managed to an agreed project plan. Testing is manual with human interpretation and analysis of results at every stage. An extensive armoury of tools and utilities – many developed in house – are combined into a unique formal methodology, built on information and guidelines contained in OWASP, OSSTMM and publications from NIST, SANS, and BSI.

Client staff are invited to ‘shadow’ Orthus consultants during key test phases to promote knowledge transfer.

Our Penetration Testing Services provide a cost-effective independent assessment of security controls and include:

  • Network and application layer tests
  • Simulated forced-entry and Denial of Service attacks.
  • Network mapping, vulnerability identification and exploitation.
  • Applied social engineering.
  • System password cracking integrity assessment.
  • Security policies and procedures verification.

Prioritised by severity and linked to business risk, all findings are catalogued and presented in a comprehensive report. Cost effective recommendations and remediation measures are clearly identified.

In addition to traditional penetration testing Orthus offer a unique Data Leakage Survey to analyse the vectors available to users through which sensitive information can be removed from organisations - either accidentally or maliciously. For more information on this service please click here

 
 
 
 
Innovations View all >>
 
Latest News View all >>
 

© Orthus Limited 2008, Click here to read our Privacy Statement. Site map