• Embed Doc
  • Copy Link
  • Readcast
  • Collections
  • CommentGo Back
Download
 
Pricing:
Pricing varies based on thesize, complexity, and depth of testing
Typical Ethical Hacking en-gagements range between$5,000 and $20,000
Additional fees apply to in-depth application testing
In the race to develop onlineservices, networked hosts andunderlying applications haveoften been deployed with mini-mal attention to security risks.The result is that most corpo-rate sites are surprisingly vul-nerable to hacking or indus-trial espionage.To test this, Ethical Hacking(sometimes referred to asPenetration Testing) is per-formed in conjunction with vulnerability scanning.
Halock’s "Red Team" of ethical hackers can perform an in
-depth analysis of identified potentialhigh risk vulnerabilities with the primary objective to gain access to sensitive data assets withinthe organization environment as a practical demonstration of what a malicious individual couldaccomplish.Many vulnerabilities, when viewed independently, do not pose a great risk to the organization. When these weaknesses are combined and placed in the hands of a skilled attacker, the result isoften a breach. Understanding and resolving configuration and security issues helps prevent theorganization from experiencing and having to disclose a real attack in the future.
Solution OverviewProfessional Services Included:
Manual testing directed at fully exploitingidentified key vulnerabilities
 Attempts to gain authenticated access toprotected systems using "brute force"techniques of guessing login names andpasswords
 Advanced techniques of system compromise,such as utilizing buffer-overflow  vulnerabilities to implant "root-kits" on targetsystems, which can then be used for furtherprivilege escalation
 Advanced testing techniques including SQLInjection, ASP and CGI script vulnerabilities, Cross-site scripting, Hidden-field manipulation, Authentication vulnerabilities, Session hijacking, Databaseerrors, Directory traversal, Form field data validation
Exploiting sensitive information containedin within application source code andunderlying systems
Documentation of findings, includingdetailed walkthroughs of exploit scenarios
Ethical Hacking
Solution At-a-Glance:
Performed internally(internet accessible), exter-nally (private), or both
Locate and identify respond-ing hosts
Exploitation of indentifiedvulnerabilities with the in-tent of gaining access tosensitive information assets
Detailed reporting of findingsand risks including narrativescenarios that walk youthrough each step of theattack
Identify and document ap-proaches and recommenda-tions to resolve securityvulnerabilities
847.221.0200 halock.com
 
1834 Walden Office Square, Suite 150 * Schaumburg, IL 60173 * 847.221.0200 * www.halock.com
 
Assessment & Compliance Services Division
of 00

Leave a Comment

You must be to leave a comment.
Submit
Characters: ...
You must be to leave a comment.
Submit
Characters: ...