How safe is your network? There is no question more fundamental for a company’s IT infrastructure. Your organization’s reputation rests with it, as do any number of security compliance mandates.

How safe are your company’s web sites? According to the Web Application Security Consortium (WASC), 96.85% of web sites are vulnerable to hacker attacks.

The security of your network installation and all the files that run on it can be conclusively determined by performing a full-scale penetration test. Clone Systems has more than a decade of experience applying this large-scale stress test to large and small networks alike.

It is no exaggeration to declare penetration testing an essential undertaking for establishing and maintaining a sound network security posture. What questions will be answered by a full penetration test?

• Is your corporate network really well protected?
• Is your protection as reliable as solution vendors claim it is?
• What are your IT risks in terms of financial loss, reputation damage, disappointed customers, and legal implications?
• In what ways can your organization steer clear of the most prevalent and critical threats and risks?

Our Clone Guard^® Penetration Testing solution is among the most intrusively thorough testing regimens employed by any service provider. It is an endeavour performed by our expert-certified engineering team onsite and offsite, over the course of several days. Upon its conclusion you will have complete audit records of all detected weaknesses in your security infrastructure, and recommendations for how to alleviate them. We guarantee the accuracy of our testing, and will perform another test to assure all potential access points to your network and the components that comprise it are structurally resistant to any and all types of internal and external threats.

CG-PenTest puts your network components, all points of access, installed servers, operating systems, system and data files, databases, and all web applications under exhaustive scrutiny. The battery of tests we perform include:

• Internal Network Scanning;
• Port Scanning;
• System Fingerprinting;
• Services Probing;
• Manual Vulnerability Testing and Verification;
• Automated Vulnerability Testing and Verification;
• Manual Configuration Weakness Testing and Verification;
• Application Layer Testing;
• Firewall and ACL Testing;
• Administrator Privileges Strength Testing;
• Password Aging and Strength Testing;
• Network Equipment Security Controls Testing;
• Database Security Controls Testing;
• Internal Network Scan for Know Trojan/Hacker Ports;
• Third-Party/Vendor Security Configuration Testing;
• Hardened Server/Device Configuration Testing. and
• Exploitation

When the testing is complete, we guarantee your site’s compliance with the most widely adopted security frameworks, including GLBA, HIPAA, Sarbanes-Oxley, FISMA, and PCI.

Additional Penetration Testing Options

Clone Systems’ engineers will go as far into your network, as you wish to explore. We can optionally embellish the penetration testing process further by performing dedicated testing routines for:

• Network Forensics. This process employs expert system technology for reconstructive traffic analysis of all your web traffic, including packet handling, low-level analysis of the HTTP protocol stack, and your processing of encrypted data.
• Phishing. Our engineers can test if your environment is prone to Phishing-based attacks.
• Social Engineering refers to the human component of a company’s security strategy. Clone Systems can attempt to manipulate an organization’s employees into allowing unauthorized access to proprietary and confidential information. This exercise will make your employees aware of the types of ruses being perpetrated and how to verify if the requests are valid.

As you can see, the dimensions of our penetration testing solution is as ambitious and uncompromising as the types of threats and intrusions that are emerging daily. Our promise to you is that when we are finished with your network, it will be certifiably secure and a policy will be in place to maintain it that way. We guarantee it.

To inquire about a CG-PenTest, please contact one of our customer representatives.