Company Penetration Testing

MDM Technologies has developed a methodology specifically geared towards the global pandemic and the risks facing South African organisations today.

 

Penetration testing is a proactive approach to discovering exploitable vulnerabilities in your web applications, computer systems, and networks. Our manual testing process goes beyond automated scanning and into complex security exploitation. Gain a thorough understanding of these vulnerabilities and begin to remediate the issues before an attacker is able to interrupt your business operations

 

 

Internal Penetration Testing

 

Internal penetration tests are conducted from within an organisation, over its Local Area Network (LAN) or through WIFI networks. The tests will observe whether it is possible to gain access to privileged company information from systems that are inside the corporate firewalls

 

External Penetration Testing

 

This type of testing assesses an organization’s infrastructure from outside of the perimeter firewall on the Internet. It assesses the environment from the vantage point of an internet hacker or a competitor with limited information about the internet facing environment.

Internal Penetration Testing Packages

Entry-Level Package – Bare Essentials

1x Internal Network Vulnerability Assessment
Exploitation of 6x networked resources (servers, workstations, CCTV or printers etc)
Assess Firewall Rules
Assess Group Policies
Basic Man in The Middle (MiTM) attacks

*Price R14 950 (excl VAT)

Timeframe +-2 days

Mid-Level Package – Essentials

3x Segmented Internal Network Vulnerability Assessments (VLANS etc)
Exploitation of 12x networked resources (servers, workstations, CCTV or printers etc)
Assess Firewall Rules
Assess IDS/IPS Policies
Assess Group Policies
Advanced Man in The Middle (MiTM) attacks
Distributed Denial of Service (DDOS) attacks.
Privilege Escalation exploitation – Exploit lower user rights to possibly Admin once access is gained
Pivoting exploitation – Try pivot from the hacked device to another device which could be a server
WIFI security test only available in Gauteng

*Price R37 950 (excl VAT)

Timeframe +- 6 days

External Penetration Testing Packages

Entry-Level Package – Essentials

1x Domain name
Vulnerability Assessment – Includes organisation foot-printing
1x Automated Website/Web app Vulnerability assessment
Exploitation of 3x External Facing Servers
10x User Phishing exercise

 

*Price R19 500 (excl VAT)

Timeframe +- 4 days

Mid-Level Package –Essentials

2x Domain name
2x Automated Website/Web app Vulnerability assessment
Exploitation of 6x External Facing Servers
30x User Phishing exercise
Privilege Escalation exploitation – Exploit lower user rights to possibly Admin once access is gained
Pivoting exploitation – Try pivot from the hacked device to another device which could be a server
Man in The Middle (MiTM) attacks.
Distributed Denial of Service (DDOS) attacks.
WIFI security test only available in Gauteng

 

*Price R46 000 (excl VAT)

Timeframe +- 8 days

External & Internal (Combo) Penetration Testing

Entry-Level Combo – Bare Essentials

1x Domain name
Vulnerability Assessment – Includes organisation foot-printing
1x Automated Website/Web app Vulnerability assessment
Exploitation of 3x External Facing Servers
10x User Phishing exercise
1x Internal Network Vulnerability Assessment
Exploitation of 6x networked resources (servers, workstations, CCTV or printers etc)
Assess Firewall Rules
Assess Group Policies
Basic Man in The Middle (MiTM) attacks

 

*Price R31 950 (excl VAT)

Timeframe +- 7 days

Mid-Level Combo – Essentials

2x Domain name
2x Automated Website/Web app Vulnerability assessment
Exploitation of 6x External Facing Servers
30x User Phishing exercise
External Distributed Denial of Service (DDOS) attacks.
3x Segmented Internal Network Vulnerability Assessments (VLANS etc)
Exploitation of 12x networked resources (servers, workstations, CCTV or printers etc)
Assess Firewall Rules
Assess IDS/IPS Policies
Assess Group Policies
Advanced Man in The Middle (MiTM) attacks
Internal Distributed Denial of Service (DDOS) attacks.
Privilege Escalation exploitation – Exploit lower user rights to possibly Admin once access is gained
Pivoting exploitation – Try pivot from the hacked device to another device which could be a server
WIFI security test only available in Gauteng

*Price R80 550 (excl VAT)

Timeframe +- 16 days