Skip to Content

Vulnerability Assessment

 

     Vulnerability Assessments are the practice of testing a computer system, network or Web application to find vulnerabilities that an attacker could exploit by using the same techniques that an attacker would use. These assessments will show you how new security devices and policy affect your exposure. Worried about patches for one vulnerability creating another? We also do follow up assessments to make sure that there are no unexpected surprises from the latest round of patches. Along with regularly scheduled scans and reviews you can be sure that your data has the highest level of protection available. Regular vulnerability assessments are also a mandatory component of many industry and government regulations. 
 
 
     DeeDocs will work with you to find the vulnerabilities in your system while maintaining a quality of service on your network. We work around mission critical services so that you don't have to slow down. We will discover the vulnerabilities in your system and make recommendations for patching them. During our assessment we also monitor and analyze the security response we encounter. Are your policies working for you? Will your IT department be able to identify and respond to a legitimate attack? The answers to these questions will help you tailor your policies to your business needs

 

 

 

Assessment Services:

     We offer several services to fit your needs. We offer internal, external, and targeted assessment services. We also offer these services on a schedule or as a one time service.

 

     External assessments focuses on how an external agent can exploit perimeter services or devices to penetrate or commit Denial of Service. Results from this assessment highlight vulnerabilities on internet facing machines and how those machines can be compromised to launch attacks against internal targets or as a platform for other illegal activity.

 

Risk of Compromise:

  • Deface the public web site causing a loss of customer and partner confidence.
  • Deny network services to legitimate internal and external users.
  • Act as staging area for attacks on other systems resulting on loss of confidence and possible legal action.
  • Surreptitiously monitor all communication leaving the network such as VoIP and email.

 

     Internal assessments focuse on how an agent with internal access, by external penetration or physical access, can exploit and compromise mission critical systems and services. Such internal agents may be malware infected machines, malicious employees, or unauthoried communications devices such as rogue access points and hanging modems. Internal assessments highlight vulnerabilities in mission critical systems and systems that contain strategic  business information. Also shows how compromised systems can be used to attack partners. 

 

Risk of Compromise:
  • Theft of confidential internal documents or intellectual property.
  • Theft of customer information such as credit cards and account information.
  • Corruption of vital business data. 
  • Denial of mission critical internal systems and services.
  • Total compromise of enterprise IT assets and data.
 
 


by Dr. Radut.