External Security Assessment
External Security Assessments are intended to evaluate the overall security posture of the enterprise from the perspective of an anonymous source on the Internet as it relates to services the enterprise makes available through their perimeter across the Internet. Our methodology starts with a process called “Fingerprinting,” during which time we do reconnaissance on the target organization by reviewing public sources of information (such as the network registrars, DNS servers, email servers, routing tables, public special interest groups, etc.) to evaluate the potential information that is available for an anonymous attacker to gather as base information to start an attack or even feed into a parallel route that might exploit non-technical weaknesses (Social Engineering).
Once fingerprinting is complete we perform technical testing with the QualysGuard Vulnerability Manager platform using a scanning profile that is mutually selected for the assets in scope of the review. The vulnerability testing process gathers data on open ports and vulnerabilities for each asset exposed to the Internet (and within scope). The output from the assessment is a summary report of findings and recommendations. The report of findings includes root cause analysis of the data collected during the engagement and offers the management team a project-based, prioritized view of remediation steps.