Internal Assessment

Foundstone network security consultants follow a tried, tested, and proven methodology to conduct superior internal network security assessments. By focusing on protecting the right assets from the right threats with the right measures, the highest levels of assurance and business value are achieved.

The process begins with securing internal devices on your network. Foundstone network security consultants identify and thoroughly test potential points of attack after enumerating every live host, open port, and available service. These vectors are often found on loosely-secured internal hosts. Foundstone attempts to identify all vulnerabilities and focuses on areas in which a compromise would have the greatest impact and create the highest risk to your business. We also understand the policies and regulations that drive the need for security, especially for e-commerce and financial services. Our analysis is not disruptive to your organization, with minimal or no impact on staff and business productivity.

Information Gathering

The Information Gathering phase results in a detailed blueprint of your company’s network that lists the types of hosts and their operating systems. This allows us to achieve thorough mapping and overcome any blind spots you might have. We gather domain names, IP network ranges, and information about hosts, such as operating systems and applications.

Vulnerability Scanning

The information gathered during the Information Gathering phase is used to perform the Vulnerability Scanning phase and penetrate vulnerable systems. Foundstone takes a holistic view of the network and chains multiple, low-risk vulnerabilities in order to achieve a high level of access into the target network. This vulnerability linking typically culminates in pilfering sensitive data such as password hashes, restricted databases, or attaining specific trophies that your company identifies.

Penetration Testing

Foundstone's network penetration testing provides the most thorough test of internal defenses available. Foundstone consultants scrutinize internal systems for any weakness or sliver of information that could be used by an internal attacker to disrupt the confidentiality, availability, or integrity of the internal network.

Foundstone Internal Security Assessment gives you the best of both worlds by performing a penetration test as a sub-component of the Internal Security Assessment. This enables you to see if your network can be penetrated from the inside and gives you a comprehensive list of all security vulnerabilities on your internal network.

Foundstone offers a Vulnerability Assessment that utilizes Foundstone’s award winning Foundstone Enterprise software. The vulnerability assessment provides a rapid and efficient inventory of the devices, services, and vulnerabilities of internet-connected networks.

Click here to view a full datasheet about this service.

Contact us to learn how our security services can help you protect your most important assets today.

RFP Template

Foundstone has developed this Request for Proposal("RFP") template to help organizations identify and select a quality security vendor to perform professional services work.

> Download

home | services | company | education | resources | contact | privacy policy | site map | McAfee.com