Penetration Testing

Omni Identity offers penetration testing for those clients that want to determine if we can actually get information from their private network. This is commonly referred to as ethical hacking. During this process we actually use the same tools and methods that hackers would use to gain control or access of systems and information that are to be protected. This type of testing is performed with caution it may cause disruption of services for the network users. During this process we will also try to avoid being detected by Intrusion Detection Systems (IDS).

This service is typically done remotely and occurs usually after an External Vulnerability Assessment.

The goal of this testing is to determine the potential risk associated with the vulnerabilities identified from the activities above. After verification of the information from the testing, we would then recommend a mitigation plan to secure the date and network to prevent the information from being accessed and to report on what was accessed by the review of logs from the IDS or other systems.

Optional Service: IDS avoidance is the practice of spreading out the attack over a longer period of time to see if we can gain access or penetrate the network fooling the IDS so it does not report on those activities. Please note with IDS avoidance it will lengthen substantially the time to complete the project however if someone were trying to break in it is what they would do.