Ethical Hacking
“Ethical hacking” consists in attacking the security system of
a company with its consent and by its own request. The purpose is to
detect the weaknesses of the system, which could be exploited by an
ill-intentioned person. Therefore, we use the same methods as a
strictly speaking information pirate. We offer a large range of
services in this field : penetration tests, post-hacking enquiries
(Forensics), server and network device audits, source code and
network traffic analysis, global security architecture and attack
tolerance evaluation as well as cryptanalysis and reverse engineering
feasibility study.
We are able to implement different types of audits, which may
concern :
-
an
application
(commercial softwares,
scripts developed for a web site, ...)
-
a communication protocol
-
an entire information network
According to the type of audit, the perimeters of
the evaluation are defined to consider the functional aspects
(respect of the legislation and regulation), the organizational
aspects (security organization, authorizations management),
operational aspects (backup copies) and technical
aspects (systems, networks, applications).
|
