Vulnerability Assessment
This service is NOT the same as a Penetration Test. I stop short of penetrating your network. Given time, anyone can penetrate your network. My preferred approach is to perform a Vulnerability Assessment first. A Penetration Test comes in when you think you have addressed all the foundational aspects.
There are two choices for the Vulnerability Assessment service.
Internal Vulnerability Assessment
- A review of your internal vulnerability program
- A network scan to show what your existing vulnerability posture is
- Assist in establishing a program or system to remediate vulnerabilities
- Assist with remediating vulnerabilities
External Vulnerability Assessment
- A review of what assets have exposure to the Internet
- A review of what reconnaissance information is available
- A network scan to show what your external vulnerability posture is
- Assist in establishing a program or system to remediate vulnerabilities
- Assist with remediating vulnerabilities