The Difference between a Penetration Test and a Vulnerability Assessment Scan:
By way of analogy a Vulnerability Assessment is akin to a report of a building pointing out that certain windows have been left open and the locks on the doors are weak. On the other hand a Penetration Test would report this, enter the window and discover and report a handbag and computer left unattended and attempt to pick the door lock. Both report where to buy self-closing windows and better locks.
How?
Using a solid base of proven trusted technologies, Security Matterz has built an assessment platform which operates a vastly improved model for security testing.
Unlike other VA tools, our partners solutions works like a consultant, and delivers a report which looks as though a highly paid security professional could have written it.
3 steps to excellence:
- Employ the same methodologies as a consultant when conducting a test
- Do data analysis on the results to weed out many false positives and duplicate issues
- Produce a report that looks as if it has been hand-written, with proper formatting, highlighting of important text, grouping of related issues, and much more
Internal Vulnerability Assessment:
Our solution can also be deployed as an appliance to perform internal assessment, report generation, and management in enterprise networks. Thorough network and application assessment is performed by our solution, negating the need for individual testing tools for specific application or network-layer assessment. The on-demand assessment solution reliably scales to perform testing of complex heterogeneous networks and applications.
Key Points are:
- Both network and application layers are tested, and combined in a single report
- Totally new technology, engineered from scratch all the way to the web interface
- Reports that look as good as a consultants’
- Ability to produce zero false positives using consultant supervision
- The most flexible reporting framework ever seen in this industry
External Vulnerability Assessment:
There has always been a choice: Conduct automated vulnerability scans for cost effective, but high-level assessments, or hire consultants for deeper and more thorough assessments … now there is a third choice.
Our solutions is a web-based security assessment tool, which provides a way to perform thorough penetration testing at both network and application-level, faster, and more cost-effectively than ever before.
Our solution enables organizations to perform thorough Internet-based network and application security assessment, that otherwise a penetration testing provider would be enlisted to perform using a team of consultants to attack and test their networks.
Identification of the vulnerabilities associated with machines accessible via the internet (e.g. external router, firewall, and web server).
- Security Policy Baseline
- Position & Strategy Formulation
- Security Awareness Program
- Application Security
- Oracle & SQL Server Security
- Vulnerability Assessment
- Penetration Testing
- SAP Security Services
- Wireless Testing
- Server / Forensic Audit
- Security Health Check & Risk Management
- ISO2700x & BS2599 Services
- Computer Forensics
- Social Engineering
- Firewall Rules Audit
- Network Security
- Implementation & Training Services
- Governance, Risk & Compliance
- Internal Network Audit & Wireless Security
Wireless Security
The AirPatrol WS 1000 wireless sensor delivers powerful wireless sensing capabilities with performance characteristics superior to any other currently available wireless sensor.
The AirPatrol CellSensor™ is the first device capable of accurately and reliably detecting and locating cellular phone devices on all commonly used bands without decoding their data packets.
.
Active Directory Optimization
Optimization is the process of changing the logical architecture of an Active Directory implementation to increase its security and ROI.
The Genesis architecture will quickly and simply optimise your Active Directory by implementing a pre-fabricated, production tested logical architecture that will instantly raise the security and ROI of the whole Windows Infrastructure.