Vulnerability Assessments

A Vulnerability Assessment is designed to test your internal or external infrastructure against known vulnerabilities and exposures. A vulnerability assessment will also test an infrastructure against manufacturer known passwords, and default configuration parameters. Nettitude has 2 approaches to Vulnerability Assessment.

1. Consultancy Led Vulnerability Assessment.This involves a trained consultant carrying out an indepth assessment of your infrastructure. It uses human logic, and is both more detailed and more comprehensive than an automated assessment programme.
   
   
2. Automated Vulnerability Assessment. This runs a series of automated scripts and checks to assess an infrastructure against known exposures. Automated Tests can be completed very quickly and are the cheapest form of test to conduct. However they also lack human logic, and are consequently not able to assess an infrastructure as thoroughly as a Consultancy Led Assessment

Nettitude recognises that both automated tests and consultancy led tests have a place in securing the corporate environment. Nettitude recommends that organisations should have a consultancy led test conducted at least once a year, with automated tests being conducted on a more frequent basis.

• Vuln: KSP '.m3u' File Buffer Overflow Vulnerability
• Vuln: Apache HTTP Server Multiple Remote Denial of Service Vulnerabilities
• Vuln: Apache 'mod_proxy_http' 2.2.9 for Unix Timeout Handling Information Disclosure Vulnerability