Our London based penetration testing service is delivered by an experienced team who are certified by CREST (the Council of Registered Security Testers). We have over 15 years of combined experience in the field of information assurance and penetration testing. Guided by the best practice testing methodology as published by OWASP, OSSTMM, CVSS and the SANS Institute.
A penetration test or otherwise known as ethical hacking uses, a series of automated and manual processes to discover the security weaknesses in an IT network, web site or application. The test and its associated penetration test report are essential audit tools for the cyber risk assessment of an IT system. They are used as a practical guide to improve the security of an IT system and to meet the organisational requirements for compliance to standards that include the Payment Card Industry Data Security Standard (PCI DSS) and ISO 27001.
The Wizard Cyber Penetration Test Report includes an overview of the tests performed, an executive management summary, a technical summary and a technical detail section. The Common Vulnerability Scoring System (CVSS) describes the principal characteristics of a vulnerability and defines a numerical score reflecting its potential severity of impact.
A network penetration test is designed to assess an IT network for vulnerabilities and security issues in its servers, hosts, devices and network services. It particularly focuses on the ‘external view’ as seen by a hacker with respect to Internet-facing assets such as firewalls, intrusion prevention systems, web sites and unauthorised access.
At the heart of modern banking, e-commerce and cloud-based IT provision, web applications are an attractive and easy target for cyber criminals. In common with all software, they contain vulnerabilities which can be exploited by a hacker to steal confidential information directly or to create a transmission platform to infect another computer with malware.