The reason most companies conduct a penetration test is to uncover vulnerabilities so that they can remediate or mitigate them, ultimately improving security posture. But in order to do that, one of the key components following any penetration test is the transfer of knowledge from the penetration test team to the organization’s defenders. And taking […]
In this two-part blog series, we are looking at what you can expect after a penetration test. More specifically, what basic steps should you follow once you receive the report to start fixing the vulnerabilities uncovered. In the previous installment, we took a look at understanding the penetration testing report and coming up with an […]
So you have finally taken the plunge and had your first penetration test completed. Or maybe this is a yearly requirement, but for some reason you still aren’t getting the results you expected. Maybe you are running into hurdles securing your environment. For many, having a penetration test completed is an eye-opening experience that will […]
One of the key outcomes of a penetration test (or any type of security assessment) is the deliverables or reports. This is really what you’re paying for when you commission a third-party to perform an assessment, as this provides your view of what happened during a penetration test. From making sure that every finding in […]
Many of our clients are getting penetration tests not only to improve their security posture, but also to use the results to satisfy a client’s requirements or integrate the results into their sales materials. We get asked quite often how other organizations handle communicating penetration testing results, while avoiding divulging sensitive information. Below, we highlight […]
We often get asked what our penetration test reports look like, so we thought we would add a quick video going over a sample report to help address these questions. In the video below we go over our standard deliverable set, which includes our executive summary and technical findings report. Executive Summary The intended audience […]
