Newberry: Cyber Security: Cyber Security Services: Penetration Testing

Incident Response

Electronic Discovery

Regulatory Compliance
Assessment & Auditing

Security Architecture &
Engineering Consulting

Vulnerability Assessment

Penetration Testing

Security Program &
Policy Development

Certification & Accreditation

A penetration test is a technique of assessing the security of a computer system or network by staging an attack from a malicious unknown entity. Our experts simulate hostile persons and will attempt to circumvent existing security mechanisms and break the system by utilizing any means necessary. The process begins with our “White Hat” experts playing the role of the “Black Hat” hacker. We analyze the system for any known or unknown vulnerabilities which are often due to incorrect configuration setup, hardware and software flaws, and other weaknesses to the system. Those vulnerabilities will then be exploited to the furthest extent. All security issues and reports of potential impact are finally presented to the client along with a proposal for risk mitigation and other technical solutions, that the client can implement themselves or we can execute for you.

Black Box System Penetration Testing: Black box testing means that our penetration experts test the infrastructure without any prior knowledge of the system. This type of testing can be extensive and lengthy.
White Box System Penetration Testing: White box testing is a popular option due to the lower cost. Our penetration experts test the infrastructure with full knowledge of the system beforehand which minimizes time and labor. It is most like an insider attack, as no outside hacker should have full knowledge of the system.
Grey Box System Penetration Testing: Grey box testing is the most popular because it most accurately simulates a real world attack. A typical malicious hacker will perform reconnaissance and research on their target to obtain limited information about an environment. Newberry’s penetration experts will perform the penetration test with the same limited knowledge of the infrastructure. Through our testing, use of automated tools, manual techniques and the analysis of the results our team will illuminate holes and weaknesses that the organization may not have considered as targets.
Wireless Penetration Testing: Wireless technology has changed the way we look at security networks. Hackers can exploit your network at home, work, or elsewhere. We look at your organization to identify exposed systems and networks and will suggest mitigation strategies to minimize or prevent intrusion.
Network Penetration Testing: Our comprehensive approach to network testing allows us to root out threats, prioritize them, and repair them. We offer both internal and external network tests.
Physical Penetration Testing: At Newberry we understand that the weakest entry point to your assets may be your physical infrastructure and staff complacency. We employ force, manipulation, dumpster diving, lock picking/breaking, social engineering, physical perimeter compromise, and simulated damage in order to gain access. (Simulated damage means Newberry will not drive a truck through your wall, but will tell you that your wall is not sufficient to prevent it.) We can perform such testing with or without your current staff’s knowledge.