Privacy policy

Our website uses cookies to give you the most optimal experience online by: measuring our audience, understanding how our webpages are viewed and improving consequently the way our website works, providing you with relevant and personalized marketing content.
You have full control over what you want to activate. You can accept the cookies by clicking on the “Accept all cookies” button or customize your choices by selecting the cookies you want to activate. You can also decline all non-necessary cookies by clicking on the “Decline all cookies” button. Please find more information on our use of cookies and how to withdraw at any time your consent on our privacy policy.

Managing your cookies

Our website uses cookies. You have full control over what you want to activate. You can accept the cookies by clicking on the “Accept all cookies” button or customize your choices by selecting the cookies you want to activate. You can also decline all non-necessary cookies by clicking on the “Decline all cookies” button.

Necessary cookies

These are essential for the user navigation and allow to give access to certain functionalities such as secured zones accesses. Without these cookies, it won’t be possible to provide the service.
Matomo on premise

Marketing cookies

These cookies are used to deliver advertisements more relevant for you, limit the number of times you see an advertisement; help measure the effectiveness of the advertising campaign; and understand people’s behavior after they view an advertisement.
Adobe Privacy policy | Marketo Privacy Policy | MRP Privacy Policy | AccountInsight Privacy Policy | Triblio Privacy Policy

Social media cookies

These cookies are used to measure the effectiveness of social media campaigns.
LinkedIn Policy

Our website uses cookies to give you the most optimal experience online by: measuring our audience, understanding how our webpages are viewed and improving consequently the way our website works, providing you with relevant and personalized marketing content. You can also decline all non-necessary cookies by clicking on the “Decline all cookies” button. Please find more information on our use of cookies and how to withdraw at any time your consent on our privacy policy.

Skip to main content

Implementing Security by simulating attacks

Penetration Testing – Infrastructure

Infrastructure

bluedash

Compromising machines in the infrastructure is the endgame of any sophisticated attacker.

Attacks on the infrastructure can result in:

  • Personal Data Leaks
  • Leak of Company Secrets (Corporate Espionage)
  • Loss in revenue, from machine downtime or data corruption

What is it?

bluedash

Penetration testing company infrastructure to find vulnerabilities and exploit them, while giving concrete remediation tactics.

Attacking either specific elements or the entire infrastructure

Typical Targets:

  • Workstations
  • Servers
  • Domain Controllers
  • Printers
  • IoT devices
  • Routers
  • Miscellaneous Shadow IT

Variations/Focuses of Infrastructure Penetration Tests:

  • General Infrastructure
  • Active Directory
  • Wireless
  • IoT
  • NAC

How is it done?

bluedash

Our Approach:

  • Starting broad, ending narrow
  • Finding vulnerabilities and machines of interest
  • Exploiting vulnerabilities
  • Escalating privileges on exploited machines
  • Pivoting from one machine to other important machines

Typical attack methods:

  • Authentication related attacks like:
    • Relay Attacks
    • Pass the Hash
    • Man-in-the-Middle
    • Rogue authentication Servers
    • Insecure Passwords
  • Attacking common vulnerabilities in protocols/services/OS like:
    • Eternal Blue
    • Heartbleed
    • Shellshock
    • Dirty COW
    • KRACK
    • and much, much more

What do we deliver?

bluedash

A structured report detailing the found vulnerabilities and the recommended remediation strategies.

Get in touch with our expert

Kasper Brandt, Nordic Cyber Security Lead

Email Kasper