EXTERNAL NETWORK PENETRATION TEST

This type of test is often confused with Web Application Penetration Tests. This is typically done for clients with multiple target systems, with the desire to triage over a large amount of externally available systems and understand the initial risks of the organization.

A small factor of testing for web applications are also included if websites are identified within the scope of testing. However, the security evaluation of the websites are only restricted to the time allocated for testing.

Similarly, this type of penetration test will be done remotely, and we will attempt to compromise any Internet facing services.

As it is difficult to prepare a development environment for such a large scale of systems, we would recommend performing this type of testing on production environments. In addition, this would bring more benefits to our clients.