External Tests
External tests will provide an organisation with a review of their IT infrastructure conducted
through the eye of an Internet User. They will have the ability to test any network that is
attached to the Internet, as well as networks that can be penetrated through weak Internet facing
security controls.
Nettitude carries out 5 different types of External Penetration Testing Services. To find out more,
click here.
The Types of tests that these assessments focus on (but are not limited to) include
- DNS Servers
- Internet Routers
- Firewalls
- IDS/IPS
- VPN Servers
- FTP Servers
- HTTP/HTTPS Servers
- Mail Servers
- Intranet/Extranet Servers
External tests will assess the security controls configured on Access Routers, Firewalls, Intrusion
Detection Systems and Contents scanners to protect the perimeter of the network. External Tests will
also provide the ability to assess Security controls for applications that are published through the
Internet. Nettitude recognises that there is increasing logic being built into web services to deliver
Extranet, e-commerce and supply chain management functions into Internet users. As a consequence,
Nettitude pays particular attention to these resources, and performs granular assessment on their
build and configuration, as well as interaction with other data sources that sit in your protected
network segments.
Nettitude carries out all External tests in line with the OSSTM security testing methodology and is a
Visa/Mastercard PCI ASV certified Penetration Testing organisation. All of our External tests deliver
strong documentation that include a High Level Management report, a detailed technical review document
and where relevant, a regulatory compliance tick-sheet for organisations that need to meet pre-determined
security requirements.