English | Français
Search
Main
Ethical Hacking
Automated AssessmentVulnerability Scanning
Penetration TestingPenetration TestsInternal Penetration TestingExternal Penetration TestingHybrid Penetration Testing
Expert Services
Security EvaluationSecurity AuditSource Code Review
Cyber-Crime ResponseDigital Forensics Incident Recovery Trademark Protection
Security AwarenessSecurity ConsultingTraining and CoursesVulnerability Monitoring
Resources
Security ResearchAdvisories
Media CenterRSSTwitterCorporate NewsMedia Publications
LiteratureCase StudiesSecurity Glossary Corporate Presentation
Company
ContactsCareersContact UsRequest Call-back
GeneralOverviewCertifications
ManagementManagement Team
High-Tech Bridge > Ethical Hacking > Penetration Testing > External Penetration Testing

External Penetration Testing

External Penetration Test covers security of systems exposed to the Internet. As anybody who has an Internet connection can access them remotely - IT risks for the external systems are very elevated.

Most popular modules of External Penetration Testing are:

DMZ / Front-Side Attacks


Front-Side attack module verifies security of servers and services exposed to the Internet. Database servers, Web servers, Mail servers, File Servers, DNS servers and VPN servers are the most popular systems accessible by anybody from the Internet, therefore the most targeted by hackers. High-Tech Bridge experts will launch many different remote attacks on your Front-Side in order to identify all the existent risks.


Web Application Attacks


Web Application penetration test module checks the resistance of your corporate website or web-based application to a large number of web attacks, which become more and more popular and easy-to-execute today. Web-based attacks permit to discover authentication, authorization, encryption and other logic flows, which could result in unauthorized access, credentials and identity theft or privilege escalation within HTTP/HTTPS portals, for example an e-banking system.


War Dialing / PABX Attacks


War Dialing module permits to ensure security of corporate telecom infrastructure. It consists of scanning telephones and VoIP entry points and looking for available resources that hackers can attack in order to gain unauthorized access to various telecom services (modems, PABX and voicemail systems). Telecom vulnerabilities exist for a very long time, however still represent an easy way to break into many networks and might result in expensive abuse of telecom services.


Physical Security


Physical security is quite often ignored in corporate security architecture and remains one of the weakest points of IT infrastructure today. Perfectly protected server is vulnerable if physical access to the server-room is not secured, controlled and restricted. Physical Security module will perfectly complete your IT security assessment process.



High-Tech Bridge Corporate Presentation

Security Glossary

Ethical Hacking ISO 27001 CISO/CSO OWASP OSSTMM CERT MELANI CEH IMPACT PCI DSS Security Policy COBIT
Ethical Hacking Penetration Testing Security Audit Digital Forensics Internal Penetration Test External Penetration Test Vulnerability Scanning Vulnerability Monitoring Advisories
2007-2010 © High-Tech Bridge SA™, Switzerland
Contacts Legal Disclaimer Privacy Policy
Print VersionPrint Version