Internal Network Pentesting
> IT | PENTESTING & MORE > Internal Network Pentesting
INTERNAL NETWORK PENTESTING
An internal penetration test (or pentest) aims at answering the question: “What could an attacker with access to the internal network, be able to do?”.
It is logical to assume that an attacker could gain physical access to the network, or could obtain remote access using malware. During an internal penetration test, we will analyze the network in an exploratory way, focusing on obtaining highly privileged (administrator, root) rights on the network, the assets and the complete Windows domain (if applicable). Internal applications, databases, ERP systems and management systems will also be tested during this phase. In a real world scenario, this is split between an initial exploratory part and a post-exploratory part.
In the initial exploratory part, our team will perform activities such as:
- Running exploits on vulnerabilities to gain access to systems;
- Sniffing network traffic;
- Accessing servers and assets with sensitive information;
- Information on shared folders and confidential information;
- Gaining access to email boxes (of specific employees).
In the post-exploitation part, our team will perform activities such as:
- Obtaining domain administrator credentials;
- Cracking passwords of domain users;
- Elevating privileges on servers, databases and applications;
- Cleaning up any access, we gave ourselves.
I'd like to know more about Internal Network Testing.
Secura is a leading cybersecurity expert. Our customers range from government and healthcare to finance and industry worldwide. Secura offers technical services, such as vulnerability assessments, penetration testing and red teaming. We also provide certification for IoT and industrial environments, as well as audits, forensic services and awareness training. Our goal is to raise your cyber resilience.
Secura is a Bureau Veritas company. Bureau Veritas (BV) is a publicly listed company specialized in testing, inspection and certification. BV was founded in 1828, has over 80.000 employees and is active in 140 countries. Secura is the cornerstone of the cybersecurity strategy of Bureau Veritas.
Mobile Apps Pentesting
Web Applications / API's Pentesting
Hardware / IoT Pentesting