Solution:

We help Organizations understand the security weaknesses in their IT environment and we provide recommendations to mitigate the risks arising from those weaknesses. 

When performing infrastructure penetration testing; we use a modified version of the Information Systems Security Assessment Framework (ISSAF). Typically, an engagement is carried out in three phases:

• Phase I – Planning and Preparation
• Phase II – Assessment
  • Information Gathering
  • Network Mapping
  • Vulnerability Identification and validation
  • Penetration
  • Gaining Access & Privilege Escalation
  • Enumerating Further
  • Maintaining Access
  • Covering Tracks
• Phase III - Reporting, Clean-up and Destruction of Artefacts