| |
M3 Security offers the following network security assessment:
External Network : Assessment of the internet network |
| Internal Network : Assessment of the internet network |
| Extranet Network : Assessment of the partner network |
Malicious outsiders will typically attempt to exploit an organization’s Internet presence, insiders, the intranet, while partners, the extranet. A comprehensive network security assessment has to involve all of these elements, since an attacker will quickly identify the weakest link and exploit it to compromise the assets of an organization. For instance, a secure internet posture could lead an attacker to gain access via a partner’s extranet, if the partner’s internet posture is weak and not as secure.
M3 Security’s defense-in-breadth philosophy results in a network security assessment that evaluates an organization’s holistic security posture and provides an actionable remediation plan that addresses weaknesses in all of the above areas.
Our assessments are done using "blind outsider", "disgruntled insider" and "malicious partner" approaches to uncover vulnerabilities and weaknesses in a client’s network.
| M3 Security offers the following approaches to network assessments: |
Blind Outsider - Assessment is conducted with no prior knowledge of the network. Publicy available information is used to probe the network for weaknesses. |
| Disgruntled Insider - Assessment is conducted with knowledge of the internal network, including DMZs, location of critical infrastructure, information about server, application and network administrators, etc. Testing assumes the attacker has access to privileged information that can be used to refine the attacks. |
| Malicious Partner - Assessment is conducted with partner-level access to the network. Testing probes for expansion of influence from any designated area that partners are allowed to access. |
|
|
