A critical complement to vulnerability scanning, penetration testing proves the extent to which vulnerabilities can be exploited by emulating what a hacker may do in a controlled and methodical manner.

Our reports are manually written for a complete risk perspective.

mile2 offers:• Black Box Testing (Zero Knowledge)
• White Box Testing (Complete Knowledge)
• Gray Box Testing (Combination of
Both of the above)

Why would you need a penetration test?

A study, released by the Ponemon Institute found that information
losses cost U. S. companies an average of $182 per compromised record,
an increase of about 31% ($138 per record).
http://www.ponemon.org/about.html

Benefits of a mile2 Penetration Test/Vulnerability Assessment:

• Intelligently manage vulnerabilities
• Avoid the cost of network downtime
• Meet regulatory requirements and avoid fines
• Preserve corporate image and customer loyalty
• Justify security investments
• Satisfy prerequisites for cyber security insurance.

Why do you need a mile2 vulnerability assessment?

Vulnerability Assessments help analyze your business risks. mile2 will identify security holes and vulnerabilities within an organization’s infrastructure.

Unlike basic penetration tests, where the objective of the test is to compromise or circumvent a system’s controls by emulating a hacker, a vulnerability assessment’s purpose is to identify security holes and vulnerabilities without penetrating the system with an exploit technique.

After completion of the vulnerability assessment, mile2 will produce detailed reports which enable our clients to manage and remediate the discovered vulnerabilities.

The tests are conducted on both external and internal systems.

Social Engineering

Skills used by Social Engineers to facilitate the extraction of information from an organization using technical and non-technical methods.

Computer fraud, black-hat hacking, cyber-terrorists; these new phrases describe an innovative generation of criminals that use over-the-wire technology to attack us, steal from us and terrorize us. However the best tool in their arsenal is not new. It is only used by the most experienced, the most dangerous and the boldest hackers - it is called Social Engineering...it simply means deception.

Does it work? Can seemingly smart people be easily deceived? Kevin Mitnick, who served five years in prison for repeated hacking said in testimony before Congress on the subject of Social Engineering, “I was so successful with that attack that I rarely had to resort to a technical attack.”

The mile2 Approach

PHASE 1 –NETWORK SECURITY ASSESSMENT
This phase ensures the network devices protecting the Web servers are configured correctly, including border facing routers, switches and firewalls.

This will involve the following:

•  Network Discovery - Using a combination of public and proprietary network mapping tools, network sweepers and port scanning tools, mile2 will gather accessible information about the physical network structure and identify available network services.
•  Network Configuration – The configuration of firewalls, routers and switches will be examined for any anomalies against your company’s procedures and standards. The configuration will be compared to that of National Security Agency standards (NSA) and any gaps will be documented. SNMP strings and encrypted passwords will be examined as well as ACL’s and open ports.
•  Vulnerability Identification – After confirming the system’s indentification, mile2 will conduct vulnerability assessment activities with open source tools and our proprietary vulnerability database in order to identify potential vulnerabilities in all network devices.
•  Exploitation Testing – After gaining express approval for the nature and time of testing, mile2 will attempt to confirm vulnerabilities using exploit code developed and tested for the task. This includes documentation and video footage to demonstrate the effectiveness of the attack.

PHASE 2 –SECURITY ASSESSMENT OF SERVER OPERATING SYSTEMS AND WEB SERVERS
In order to assess the security of the server operating systems and web server software, the following phases of the Security Assessment methodology will be undertaken using your Policy and NSA Standards.

•  Operating Security Controls – mile2 conducts a full review of your company’s servers platform housing the web server.  This includes but is not limited to: patch levels, registry lockdown, user accounts, service accounts, file permissions, enumeration settings and SNMP configuration. Open source and commercial tools will be utilized.
•  Web Server Security Controls – A full review of your IIS/Apache configuration including but not limited to lockdown, removal of default configuration, modules selected, log file security, patching, consoles and retention. Open source and commercial tools will be utilized.
•  Vulnerability Identification – After confirming the system’s indentification, mile2 will conduct vulnerability assessment activities with open source tools and our proprietary vulnerability database in order to identify potential vulnerabilities in all services.
•  Exploitation Testing – After gaining express approval for the nature and time of testing, mile2 will attempt to confirm vulnerabilities using exploit code developed and tested for the task. This includes documentation and video footage to demonstrate the effectiveness of the attack.

PHASE 3 –SECURITY ASSESSMENT OF WEB APPLICATIONS
The final phase is where the majority of hacking attacks take place. Analysis of cookies, code inspection,
encryption types, randomness and input validation will be carefully analyzed. These attacks are not stopped by firewalls and are now 70% of all hacker successful attacks.

•  Code Inspection – All web server code, including PHP, JAVA, C# (.NET) and HTTP will be inspected
for potential buffer overflows.
•  Administrative Interfaces -To determine the extent of any administrative interfaces used and whether or not they are secure.
•  Authentication and Access Control - To determine the adequacy of the authentication and access control configurations.
•  Configuration Management - To determine the adequacy of change management procedures.
•  Input Validation - To determine whether the web application can be manipulated by inserting invalid input in order to extract sensitive information or perform unauthorized functions.
•  Parameter Manipulation - Determine whether parameters in the web applications can be manipulated to extract     sensitive information or perform unauthorized functions.
•  Session Management - To identify the session management mechanism used and to determine any security control weaknesses.
•  Business Logic - Determine whether business logic controls can be bypassed.
•  Links - Review of any links to other connected Servers including middleware/database servers.

Project Deliverables

The results of the project will be documented in a Security Assessment Report, which will include the following:

•  Executive Summary with a matrix of high priority issues identified and “layman’s” description of impact suitable for senior management
•  Comments on common areas of security weaknesses.
•  Technical Overview of issues identified including:

         •  Name of web application
         •  Security weakness (e.g. Input Validation flaw allows Denial of Service Condition);
         •  Potential Impact (eg. High, Medium, Low);
         •  Description of impact (eg. An authorized user can insert invalid input into the application causing a denial of service condition requiring full system reset);
         •  Evidence of impact (e.g. screen shot, system log extract, system code
         extract); and
         •  Technical Description of Suggested Fix (e.g. perform known good input
         validation of the following form fields in the web application).
         •  Videos of the successful attack patterns to be used to highlight to management