What is penetration testing?

Penetration testing (aka "ethical hacking") is a set of actions, performed by Certified Ethical Hackers from EASI, that will replicate malicious behaviors in order to check that your IT infrastructure or the defined scope is correctly protected and configured.

EASI Penetration Test

The penetration test can be based on the "white box" or "black box" principles:

White box

White box means that EASI gets as much information as possible about the network beforehand.

Black box

Black box means that EASI starts from scratch and performs more reconnaissance actions before starting the actual pentest.

What do we do during a penetration test?

Here is a non-exhaustive list of actions that can be performed during a penetration test:

  • Vulnerability scanning
  • Vulnerability exploitation
  • SQL injection, XSS manipulation, URL manipulations...
  • Fuzzing
  • Social engineering
  • Phishing
  • Use of evasion techniques
  • Password cracking/ brute forcing
  • Spoofing
  • ...
Penetration test options

Penetration test report

A detailed report will be provided after the test. This report contains the flaws we were able to exploit / "circumvent". You will also be able to check the weaknesses against their exploitation status and recommendations with the solutions on how to fix them. 

Last but not least, EASI also aims at pointing out weaknesses that we were not able to exploit during the penetration tests, but where unauthorized access may be gained over time. This is important as the timing of our test is limited, but malicious hackers have all the time in the world!

We are already helping them

Monument Vandekerckhove
Maison Marie-Immaculee
Doyen Auto
Friends of Europe
TCM
Vermeiren
Gemeentebestuur Sint-Jans-Molenbeek

Want to know more about our Penetration Testing services?

Recent articles

audit
Security
Maxime Lamarche
Maxime Lamarche
20/08/2019
How does it work? Which score will you get? We'll explain it here!
Recovery-1
Security
Dirk Slechten
Dirk Slechten
07/08/2019
We've talked about Perimeter Strategy, your End Point & Server Protection Strategy and now it is time for the third and final part of this series: your Backup and Recovery Strategy.
Recovery-1
Security
Dirk Slechten
Dirk Slechten
30/07/2019
Protecting physical desktops & laptops are a challenge in a daily administrator tasks. Physical desktops & laptops have the of being de-centralized. Centralizing your end-points in a data center will give you several security benefits.