Skip to content

CybersECURITY

Protect yourself against Hackers

CYBERSECURITY ASSESSMENT

Pentesting (or penetration testing) aims to test your defenses
against cyber-attacks. Thus, we make recommendations to avoid:

  • ransomware
  • data theft
  • industrial espionage
  • hacking of your computer resources

Method

The techniques used are similar to those used by hackers to penetrate computer systems. They allow us to identify vulnerabilities and to secure the infrastructure. We produce reports that list all the identified vulnerabilities and we can, on request, display them to demonstrate the malicious potential of the detected flaws.

PENETRATION TESTING (PENTESTING)

Network Pentesting

This is a security test of the client’s networks. The pentesters will perform the tests without detailed network or infrastructure diagrams and without additional accounts or user information. The methodology used is based on the Open Source Security Testing Methodology Manual (OSSTMM). The external network test can be limited to a specific IP range but/and also include a broader recognition of the enterprise using OSINT (open-source intelligence).

Wireless Pentesting

We work with the Open Source Security Testing Methodology Manual (OSSTMM) and the Penetration Testing Execution Standard (PTES) as the foundation for a wireless assessment methodology that simulates real-world attacks to provide a point-in-time vulnerability and threat assessment for your wireless network infrastructure.

Social Engineering

Malicious users are often more successful at penetrating a network infrastructure through social engineering than through traditional network and application exploitation. To help you prepare for this type of attack, we use a combination of human and electronic methodologies to simulate the attacks. Human attacks involve impersonating a trusted individual in order to gain information and/or access to customer information or infrastructure. Electronic attacks involve the use of complex phishing attacks designed for specific organizational objectives.

Web Application Pentesting

Spatiodata’s web application penetration testing service is based on the Open Web Application Security Project (OWASP) Application Security Verification Standard (ASVS) and the OWASP Testing Guide. Together, they create a comprehensive framework for web application security assessment, which serves as the basis for the web application assessment methodology. In addition to the OWASP Top 10 vulnerabilities, pentesters will also test the security of specific business logic associated with the web application, such as weaknesses in data validation or integrity checks – flaws that can only be discovered through manual testing, not through automated vulnerability scanning