Penetration test simulates attacker’s actions in penetrating your DBMS and thus helps to discover vulnerabilities in the DBMS defense, and if possible, to execute a demonstrative break-in.
Procedure of the penetration test
Usually, a Penetration test will take about one month for a team of auditors specialized in information security to complete a penetration of the Client’s information system. Various automated tools, such as scanners are used only during the preparation stage, since they only help in trivial cases when vulnerabilities are obvious and easy to find. During the scope of the test, auditors perform a comprehensive analysis of all components of the audited objects, choose appropriate attack scenarios and in specific cases may develop unique software to penetrate the information system.
The Audit’s results
As a result of the audit you will obtain a detailed report, which will describe the following statements:
- A detail description of the work accomplished.
- All detected vulnerabilities.
- Possible ways to penetrate into the system with vulnerabilities and the configuration’s defects that were found.
- Detailed recommendations on how to eliminate the vulnerabilities.
- The general rules on how to provide security for database.
Please contact us at services@dsecrg.com
