External
Custodian’s External Infrastructure Penetration Test will take place from our offices and will be delivered by CREST qualified consultants. The testing is designed to identify the accessible external network against security best practice and to attempt to exploit any vulnerabilities found.
The outcomes are to include a report with a full breakdown and remediation advice.
Internal
Custodian’s Internal Infrastructure Penetration Test will share the same approach as the External Infrastructure Penetration Test. The testing is designed to assess the Internal Network against security best practice .
The Internal testing will usually test from a black box perspective and an attempt will be made to escalate through the network starting with no credentials and potentially acheiving full administrative access. The outcomes are to include a report with a full breakdown and remediation advice and washup meeting.