Penetration testing

Penetration testing has different definitions, depending who you ask. But all those definitions revolve around the need to identify security weaknesses.

In Beyond Security, we know a lot about security weaknesses. We manage one of the most popular IT security portals - SecuriTeam.com, members of our development team wrote several books on the subjects of security testing, vulnerability assessment, fuzzing, botnets, and more.
This expertise was used to develop the Automated Vulnerability Detection System (AVDS). The novelty of the AVDS is not only the ability to conduct completely automated security tests that rival most manual penetration tests but also the fact that you can run an ongoing penetration testing to account for the countless of new vulnerabilities that surface in an unmanageable rate.

The Automated Vulnerability Detection System (AVDS) is updated with new attack profiles on a daily basis, using information from the www.securiteam.com security portal, which is one of the largest and most respected security information gathering portals on the Internet.

Using AVDS, it is possible to conduct security scans on:

The corporate LAN and WAN (from within the organization)
The DMZ and the external network (from the Internet and outside world)
Applications
Anything that talks "IP" on a network including VoIP network elements and end-point devices.

The AVDS has the following major advantages over other penetration testing solutions:

It simulates a range of attacks on the organization's network without causing any damage - using the same techniques, tools and methodologies as the most sophisticated hackers.
It consumes minimal bandwidth - there is no negative effect on the network's running performance this application.
It performs daily/weekly penetration testing according to your predefined schedule
It has inbuilt data mining capabilities allowing on-the-fly generation of statistical and historical information
The unique "Customer Zone" gives the ability to decentralize the vulnerability scanning task to multiple users. This gives them a simple web interface with limited access to the scanning system.
It allows instant tracking of vulnerabilities across the entire network
It generates a detailed network mapping, detailing what servers and services have been added, removed or changed since the last scan.
It can generate results in any of the following formats: HTML, PDF, CSV and XML.

The AVDS reports can be used as part of a penetration testing session as it provides an extensive network management tool and a potentially very powerful Sarbanes-Oxley compliance tool. Some of the reporting features include:

Easy to read and understand
Contain executive summary and technical sections.
Provide links for immediate remedial action.
Can contain Differential Reporting Mechanisms that show the difference from previous scans, allowing you to track both infrastructure changes as well as the vulnerabilities.

beSTORM

Secure programming from the start

Next generation security testing

Audit more applications with greater efficency

Automated
Vulnerability
Detection
System

Daily automated security assessment

Solutions to vulnerabilities found

Manage vulnerabilities across the enterprise

Web Site Security Audit

Scan your web site for security holes

Integral part of the VA/VM solution

Low false positive rate

www.SecuriTeam.com

Top	Review our Privacy Policy, Terms of Use © Copyright 1998-2008 Beyond Security. All rights reserved.

Contact Us

US: 1.800.801.2821

UK: +44.203.006.3022

News Headline

	beSTORM the first security testing tool to introduce RMI fuzzing.
	Beyond Security Finalist for the Red Herring 100 Global Awards 2007.

	Beyond Security CTO's keynote in Malware 2007.

	The return of SIMBAR - Cyber-terrorism methodology.

Security News

	AWStats Totals Multiple Vulnerabilities (Exploit).

	Version-Independent IOS Shellcode.

	Sun Solaris snoop SMB Exploit.

	Multiple Vendor libpurple MSN Protocol SLP Message Heap Overflow Vulnerability.

Among our Clients