our Pen-Test methodology

How we do it

The targets will be exposed to different scan techniques and dedicated attacks from the internet. After an initialization phase of information gathering, the systems will be exposed to specially adapted attacks on system and/or application level. During the tests we strive not to impact the availability of the targeted networks or systems. However ERNW can not be held liable for downtimes or any following consequences.

back

TROOPERS11 - New date

TROOPERS12 takes place in March, 29th - 23rd, 2012 in Heidelberg. Mark your calendars now and sign up for the official TROOPERS newsletter to stay up-to-date. [More]

Security Testing

Testing IT security is one of the core competences of ERNW. Many of our customers get their IT infrastructure and (Web) applications checked on a regular basis. This may either be done on a very technical level in terms of penetration testing or in a more formal way in terms of general security audits, during which we verify the IT Security Compliance of your company compared to best practices according to ISO17799/ISO27001 ... [More]

Research & Technology-Evaluation

Research is the foundation of our Know-How leadership. The objections of this work is to unveil security flaws and vulnerabilities in protocols, technologies and products. Some findings derive from design-flaws, some from poor implementation on a technical level.... [More]

Legal Notice Company