Web, Application and Network Penetration Testing

Network security is only part of the picture. Securing the internal and external networks is only the first step. For complete protection, both web applications and internal applications need to be secure. Externally accessible applications, web sites for example, represent the largest threat. Application development typically includes functionality and performance testing, but rarely security testing. For that reason, applications should be tested by security experts. There are three major areas of application testing: · Application Design and Access Assessment · Application Penetration Testing · Code Reviews · Wireless Network Testing · Physical Network Testing

  • Identify deficiencies
  • Get to root causes
  • Prescribe effective remediation

Typically, the test is started from a position of least knowledge about the client’s systems and networks as they appear from an external perspective. Using the Black Box methodology, MVA assumes the role of a malicious external user, with no previous knowledge of your network structure or security plan. The Black Box methodology simulates a malicious external user exploring your externally accessible infrastructure with hopes of gaining entry to your internal assets.
As the test proceeds, MVA works with internal staff to move from a position of zero knowledge to a position of limited knowledge, to a position of full knowledge. As each perspective changes, snapshots of the network security are recorded.

 
As an industry we appreciate incredible forms of design that work in conjunction with the more formal aspects of new media.