Penetration testing is a standard, cost-effective method of providing third-party assurance of a system’s security from an attacker’s perspective. MDSec’s certified team can provide a range of tailored services to meet the requirements of your organisation.
We believe large, complex infrastructures require considerable breadth and depth of experience from the assessment team.
Our accredited team can undertake assessment at a multi-network perspective, corporate-focussed Active Directory perspective, right down to an in-depth assessment of individual solutions or server builds.
With nearly all organisations moving to the Cloud, configuration, management and adherence to best practice is critical. This prevents accidental exposure of internal resources, access keys and assets.
Our team undertakes Cloud configuration reviews to benchmark organisations’ use of available features, access controls, logging, authentication, server build, deployment and zoning.
Where organisations are making key product purchases (including security products), they frequently have only the vendor’s own claims to go on. Yet security assessment is generally a tiny fraction of the product’s overall cost.
Through a blend of reverse engineering, real-time function hooking and behavioural analysis, MDSec can locate vulnerabilities in products and validate vendor’s claims.