A Penetration test will exploit vulnerabilities by having an authorized Red-Team Hacker actually attempt to break into your network, server or application. Red-Team may undertake several methods, workarounds and "hacks" to gain entry, once in, we will endevour to exploit other 'more sensitive' areas of the network.

Why do it?

The aim is to discover vulnerabilities within your infrastructure and ways in which your systems could be compromised. With this knowledge you can then take the necessary steps to strengthen your defences against possible attack.

Red-Team uses a detailed and proven methodology for Penetration Testing engagements. Our approach can be separated into the following phases:

Information Gathering - Red-Team will gather as much information on your company as possible using various publicly available sources.

Target Identification - We will identify target networks, servers, and hosts. We will create a footprint of your organisation from a technical perspective. This phase will highlight potential avenues of exploitation.

Target Enumeration - Red-Team will identify the topology of your network, specific systems and services. We will identify applied patch levels, as well open and closed ports on target systems.

Vulnerability Identification - Based upon the results of the Target Enumeration process, Red-Team will identify vulnerabilities of a target during this phase.

Vulnerability Analysis - Before exploiting any vulnerabilities discovered on a target host, Red-Team assess the potential impact caused by exploiting any vulnerabilities found.

Vulnerability Exploitation - Red-Team will attempt to hack your systems! Clients will be immediately notified of any high-risk vulnerability and the consequences of exploiting it. This phase provides the basis of the reporting process.