www.ipnec.com | www.vxg.co | sales@ipnec.com

Penetration Testing //Vulnerability Assessment //Remedy

A Company

In Penetration Testing, part of a securityassessment practice attempts tosimulate the techniques adopted by anattacker in compromising the targetsystems. Our penetration testingmethodology is up to the mark withInternational Standards, combined withour extensive experience.

You may not always know you have aproblem – We tell you!

www.ipnec.com | www.vxg.co | sales@ipnec.com

www.ipnec.com | www.vxg.co | sales@ipnec.com

Analyze Client needs

Analyze ScopeSecure & optimize

Measure results Evalute

ResearchImplementation

Security Strategy

www.ipnec.com | www.vxg.co | sales@ipnec.com

⁞ “Whether we like it or not, hackers will get in – and they do get in, every day. The challenge is, yes, to minimize the Risk. But as we get more sophisticated, how do we

operate in an environment if we know they’re in our systems?”

Heather Crofford, CFO of Northrop Grumman

⁞ Approx Costs associated with the Targetted data breach that occurred in 2013 reached $148 million by the second quarter of 2014.

⁞ A 15-year-old once hacked NASA and caused a 21-day shutdown of their computers. (2013)

⁞ Sony got Hacked badly, assumably approx. around 100Terabytes of data was compromised & stolen.

(2014)

www.ipnec.com | www.vxg.co | sales@ipnec.com

⁞ You spend good budget on IT

⁞ What if it all got compromised?

⁞ Are you sure your investmentis safe?

⁞ Firewalls & Antiviruses alone can’t stop hackers

www.ipnec.com | www.vxg.co | sales@ipnec.com

⁞ Intelligently manage vulnerabilities

⁞ Avoid the cost of downtimes

⁞ Avoid loss of data

⁞ Avoid leak of Confidential data

⁞ Meet regulatory requirements and avoid fines

⁞ Preserve corporate image and customer loyalty

www.ipnec.com | www.vxg.co | sales@ipnec.com

⁞ Avoid costs for remediation

⁞ Avoid Millions of dollars worth

loss of the hard-earned money

⁞ Why not identify and address

the risks now while you can?

continued..

www.ipnec.com | www.vxg.co | sales@ipnec.com

⁞ New vulnerabilities everyday, don’t stop just your business, they compromise your image too.

⁞ PenTests should be performed on a regular basis

⁞ This reveals newly discovered threats or emerging vulnerabilities that may potentially be attacked

Weaknesses

⁞ Additionally to regular analysis and assessment, PenTest whenever:• New network infrastructure or applications are added

• Significant upgrades or modifications are applied to infrastructure or applications

• New office or branc locations are established

• Security patches are applied

• End user policies are modified

• … etc

www.ipnec.com | www.vxg.co | sales@ipnec.com

⁞ Quality Infrastructures across the Region.

⁞ We specialize in a wide spectrum ofpenetration testing capabilities.

• Info gathering

• Foot-printing

• Vulnerability assessment

• Exploitation

• Reporting

⁞ Our penetration testing comprehends• All OS (Win, Linux, OSX)

• Web applications

• Client-server applications

• Infrastructure

• ERP systems

• Mobile applications

• wireless, social engineering, etc

www.ipnec.com | www.vxg.co | sales@ipnec.com

⁞ Web Application Security Testing

⁞ Network Penetration Testing

⁞ Risk-based Penetration Testing

www.ipnec.com | www.vxg.co | sales@ipnec.com

Assess the security of the application by focusing on

⁞ Remotely exploitable vulnerabilities

⁞ Application architecture

⁞ Design & Implementation

We assess the controls with

⁞ Privilege levels

⁞ Development and delivery

⁞ Overall design of the applications

⁞ This helps to give the total threat profile of your web application

environment

www.ipnec.com | www.vxg.co | sales@ipnec.com

⁞ This type of a penetration test involves identifying the targets through

• Google searches

• WHOIS

• DNS queries

• …etc

⁞ Fingerprinting and identifying vulnerabilities

⁞ Limited exploitation is always done in terms of password guessing,

directory traversals, file uploads, etc

⁞ Before going for stronger exploitation methods such as Denial of

Service attacks, Buffer Overflow exploits, an so on, we take prior written

consent so as to not to cause possible consequences from the such

exploitation methods

www.ipnec.com | www.vxg.co | sales@ipnec.com

⁞ The days and age of tool-based

scanning are long gone

⁞ Our real expertise comes into play

leveraging the test cases

combined with our strong understanding

of business processe across various industries

⁞ The need of today is for the hard-core and

manual pentesting and to understand the

risks associated with the app

⁞ This approach, then might also include social engineering attacks,

threat modelling, and other elements that might not be typical of a

traditional penetration testing exercise.www.ipnec.com | www.vxg.co | sales@ipnec.com

www.ipnec.com | www.vxg.co | sales@ipnec.com

www.ipnec.com | www.vxg.co | sales@ipnec.com

Latitude & Longitude 24.697736, 46.7225844

Degree Decimal 24.697736N 46.7225844E

Degree, min, sec 24°41′51.8″N 46°43′21.3″Ewww.ipnec.com | www.vxg.co | sales@ipnec.com