Penetration testing | ITG AE

ITGLOBAL.COM events

Contacts

Services
Cloud computing

Managed Services

Building IT infrastructure

Security
Cloud computing

Highly scalable IT infrastructure in our own ITGLOBAL.COM cloud

IaaS
Subscription-based model for delivering cloud services

VMware Private Cloud

VMware Public Cloud

AI Cloud — GPU Cloud Compute

Object storage

SAP Cloud

SaaS
Subscription-based model for delivering cloud services

Exchange Cloud

SharePoint Cloud

Skype for Business

PaaS
Ready-to-deploy cloud platform

CDN

Kubernetes (k8s)

DaaS
Cloud infrastructure for virtual desktops

VMware Horizon VDI

Terminal server

3D VDI

DRaaS
Cloud-based disaster recovery service

Disaster Recovery

Veeam Cloud Connect

Managed Services

Ensuring uninterrupted operation of IT infrastructure, considering technological and operational requirements of the customer

Managed IT
Support of operating systems, DBMS, application servers

Managed VMware
Managing client infrastructure built on VMware platform

Building IT infrastructure

Design and deployment of corporate IT infrastructure

Audit of IT infrastructure

Security

A ready-made set of products and services to ensure information security

Audit of information security processes
Analysis of information security processes in the Company with the issuance of expert recommendations

Pentest mobile apps
We identify vulnerabilities in mobile applications

GDPR
Preparation for GDPR certification

Internal pentest
Analysis of the security of the IT infrastructure through the eyes of an internal attacker

External pentest
Analysis of the security of the IT infrastructure through the eyes of an external attacker

Information security outsourcing
Secure the protection of your information, thereby freeing up resources for the main business processes

Risk-based IS auditing and the concept of unacceptable events
The method of providing information security, which it is based on the analysis of risks and their prioritization
Products
Hardware

Software
Hardware

A wide range of equipment for building your own IT infrastructure

Server hardware
Best equipment from trusted manufacturers

Cisco

Lenovo

Dell

Bull

Storage
Equipment for creating storage facilities

NetApp

Hitachi

Huawei

Dell

Lenovo

ITPOD

Network
Equipment for network construction

Cisco

Huawei

ITPOD Bypass Switches

ITPOD Network Packet Broker

VAS Experts

Engineering systems
Equipment for building physical data centres

C3 Solutions

Software

Software for a wide range of applications

Virtualization
In-demand solutions for building corporate virtual infrastructure

VMware

VStack

Backup systems
Software solution for data backup, disaster recovery and replication

Veeam

Cybersecurity
Solutions to protect against cyber attacks and unauthorised access

Radware

Sangfor
Solutions
IT Infrastructure

Corporate solution

ISP Solutions

Blockchain for business

Data center engineering solutions
IT Infrastructure

Information resources and technologies that ensure operation and management of the company's IT environment

Data processing
Hardware and solution for data storage organisation

NetApp FAS-series

NetApp All-Flash Storage AFF

NetApp E-series

NetApp All-Flash EF

NetApp Ransomware Protection

NetApp archived storage models

Backup Solutions
Leading backup solutions

Server hardware
Equipment for building IT infrastructure

DC Solutions
Solutions to protect IT infrastructure from power failures

Corporate solution

Solutions for realisation of service approach and customer relationship management

IT Service Management (ITSM)
Platform for IT service management and automation

ESM platform
А modern designer allowing to automate business processes in service divisions in accordance with the ESM concept

B2B CRM
A platform for optimising and managing corporate sales and marketing activities

SimpleOne SDLC
Management system for the development of software products and solutions based on agile methodologies

SimpleOne ITAM
Optimize the accounting and handling of your company's IT assets and simplify reporting and control of IT costs

ISP Solutions

Dedicated internet channels with high bandwidth capacity

Stingray SG
Software and hardware complex based on a software-defined solution and standard x86 server architecture

BRAS/BNG
One of the key options of stingray is a service gateway for subscriber authorisation

QoE
Software product for collecting statistics and assessing the quality of perception of services

CG-NAT
IPv4 network address translation mechanism, allowing more connections to be served simultaneously

Blockchain for business

Technologies and solutions for integrating blockchain technologies into the business processes of enterprises

Data center engineering solutions

Integrated approach to creating data centre engineering infrastructure
Media
Blog

Corporate blog about Managed IT, cloud technologies and events in the IT world

Materials

Quick guides, e-books and other useful materials

News

Media coverage and the life of ITGLOBAL.COM

Activities

Activities dedicated to the theme of information technology

Glossary

Collects key technical terms and concepts from the world of IT
Company
Career

Current vacancies in the company ITGLOBAL.COM

Customer reviews

First-hand experience with our products and services

Contacts

Contact us to discuss your project and get answers to your questions

Success stories

Examples of successful implementations and realised projects

Data Centers

We provide servers, networks and storage for rent

Licenses and certificates

Full list of the company's certificates of conformity and licenses
Partners
Become a partner

Partnering with ITGLOBAL.COM will allow you to quickly start earning from cloud services

White label

Cloud partner

List of partners

International

Penetration testing

Penetration testing (pentest) is a targeted simulation of a cyberattack on the IT infrastructure, which is carried out by information security specialists to assess the level of its information security.

The purpose of the pentest is to identify threats and vulnerabilities that an attacker can use, for example, to steal data, and generate a detailed report with recommendations on how to eliminate them and improve the company’s information security level.

The stages of the pentest

Planning and exploration. Determine the scope and objectives of the pentest, collect the necessary data, and identify the systems that need to be tested.

Scanning. Using automated tools to understand how the system reacts to various intrusion attempts.

Getting access. Exploiting vulnerabilities that were discovered at the previous stage and attempts to hack the system.

Maintaining access. Checking whether the vulnerability can be exploited to achieve a permanent presence in the system.

Analysis. Analyzing the results, generating a report with detected threats and vulnerabilities and recommendations for their elimination.

Types of penetration testing

Penetration testing can be divided into three main types, each of which is characterized by a different degree of knowledge about the system and a different level of information disclosure.

Testing the “black box“. The pentester has no prior knowledge of the system, so it simulates an attack by an external hacker.

Testing the “white box“. The pentester has complete knowledge of the system to conduct comprehensive and thorough testing.

Testing the “gray box“. The pentester has partial knowledge of the system. Such a check simulates an attack by a privileged user.

Vote

Rated by: 1

We use cookies to optimise website functionality and improve our services. To find out more, please read our Privacy Policy.

Cookies settings

Strictly necessary cookies

Analytics cookies