Courses we Offer

Consultancy

Penetration Testing, Network Security Audits & Assessments

Coursefox Security offers Penetration Tests and IT Network Security Assessments all kind (Internet, Intranet, Social Engineering, Forensic Analysis, Wireless Audits etc.) in order to discover system vulnerabilities. We will help to close them down in order to be protected from today's ever increasing cyber crime threats and to comply with latest government IT regulations.

Our goal is to find security holes in our customer networks in order to close them down and protect our customers from today's threats that are present the digital world. Hardly any day goes by without news about security breaches, identity theft and malicious attacks on networks and end systems. Recent figures indicate that more than 90% of all IT systems are vulnerable to attacks.

In order to protect your infrastructure from attacks, we will perform comprehensive penetration tests on your network and reveal the vulnerabilities to our customers. We will then come up with a letter of recommendation on where security is weak and what needs to be done to protect your networks and host systems.

In addition, we provide consultancy on the following topics: Access Control, Application Security, Business Continuity, Disaster Recovery Planning, Cryptography, Information Security and Risk Management, Legal, Regulations, Compliance, Investigations, Operations Security, Physical Security, Security Architecture and Design, Telecommunications and Network Security.

Let us discover your network’s vulnerabilities, so they can be eliminated
…before a malicious hacker does...

Are you in need for a Penetration Test (Pentest), a vulnerability assessment, security audit, security assessment or a Network Security Consultant?

All our consultants hold the highest vendor and government certifications such as:

* Certified Ethical Hacker (CEH - EC-Council)
* Cisco CCIE Security
* Cisco CCSP
* Cisco Information Security Specialist
* Cisco Firewall Specialist
* Cisco IPS specialist
* CISSP (ISC)
* INFOSEC - NSA Information Systems Security Professional
* 4011 Recognition - U.S. National Security Agency (NSA)
* 4013 Recognition - U.S. National Security Agency (NSA)

Senior Security accredited engineers (Certified Ethical Hackers - CEHs) will carry out comprehensive network penetration tests on your organization network(s).

Confidentiality is our principle.
Coursefox Security will make all its Security Consultants sign a confidentiality- and non-disclosure agreement with our customers prior to any engagement. All data and information about our clients are kept in strictest confidence and will never be released to third parties of any kind.

All our consultants have excellent customer facing skills. We select all our consultants very carefully to ensure they not only meet the highest technical requirements, but also possess very good social skills and are of good character.

A Penetration Test / Security Audit can contain any of the following modules:

Internet Security Assessment
Any device with access to the Internet is a potential open door to would-be hackers. We provide vulnerability assessments during which we closely map the network architecture, examine all open ports, hosts and services with access to the Web, and ensures that these network devices are secure. Defensive thinking gathers information such as domain names, IP network ranges, operating system and applications, to identify systems on the network, how they are related, the services that are exposed through open ports (such as http, SMTP, terminal services, etc.). Once open ports and attached services are identified, we determine whether each service has been updated with the most recent patches and identifies other vulnerabilities located within the exposed services.

In addition to conducting vulnerability assessments, we perform more rigorous penetration tests in which the information gathered from the assessment is used to attempt to penetrate the network. This more thorough procedure can confirm whether potential vulnerabilities are, in fact, capable of being exploited to expose the network.

Following all vulnerability assessments and penetration tests, we use the information we gather to prepare a thorough vulnerability analysis and offers recommendations for strengthening network security.

Intranet Security Assessment
While outside threats must be guarded against, business must also protect against potential threats from within their own networks. Using many of the same techniques and procedures for Internet Security Testing, we provide Intranet risk assessment and analysis to protect against the potential threat posed by insiders.

Depending on the client’s needs, intranet testing can be performed by us under varying degrees of disclosure of network information from the client, for example with or without network accounts.

Dial-in RAS Security Assessment
Dial-in links pose a potential threat to the integrity of the network security system. We examine dial-up connections that allow employees to access the network through public telephone lines or other dial-up connections. Given a range of telephone exchanges that may include modems, we can identify target numbers that allow for remote access. Using these numbers, we attempt to exploit vulnerabilities in the system and gain access to the network. We can also assess risks posed by the exposure of dial-up connections to the public telephone network which might undermine the client’s own internal security architecture.

Web Application Assessment
This assessment examines what services are being offered on Web-based portals and e-commerce applications to examine potential vulnerabilities with respect to authentication, authorization, data integrity, data confidentiality, and consumer privacy concerns. We can
test these applications using either zero-knowledge testing or full-access testing to examine the full range of potential vulnerabilities. We also conduct source code audits to identify any potential vulnerability among the applications and scripts that are accessible through the Web.

Wireless Assessment
Wireless networks, while highly convenient, present additional security threats since the wireless signals are not limited by the physical boundaries of a traditional network. We evaluate how to prevent wireless communications from being exposed to eavesdropping and access by unauthorized intruders. Additionally, we examine the enterprise infrastructure for unencrypted or standard WEP enabled access points that may be vulnerable in order to ensure the security of the network.

Social Engineering Assessment
Social engineering involves manipulating and/or deceiving company employees and other human resources to gain unauthorized access to a network or to confidential information. We are a premier consulting firm in our ability to identify weak links in the security chain through exploitation of human vulnerabilities. We leverage our unparalleled expertise in this field to expose what is often the weakest link in the information security apparatus:
the human element.

Once individual or systemic weaknesses are identified, we recommend procedures designed to ensure that employees do not divulge information that could compromise company assets. The social engineering assessment not only uses tactics intended to gain confidential information, but also to induce unsuspecting employees to create vulnerabilities that can subsequently be exploited to gain access to confidential information.

Telecommunications Assessment
We have unique experience testing vulnerabilities in private bank exchanges that operate company voicemail and messaging systems. Unauthorized access to these systems can allow an intruder to eavesdrop on and manipulate employee voicemail messages, initiate outgoing calls from internal company lines, and access corporate telephone networks and directories.

Database Assessment
Client lists, credit card records, and other confidential information held in databases must be given particular protection from unauthorized disclosure. We test database integrity to determine whether any vulnerability may compromise this sensitive information.

Physical Security Assessment
Access to confidential information can often be obtained by simply gaining physical access to company premises. We conducts on-site surveillance to assess physical security and uses social engineering, pass key duplication, and other techniques designed to gain physical entry into secure areas and the network system.

Forensic Analysis
In addition to preventing future attacks, we can conduct forensic analysis to evaluate past security breaches. This analysis examines log reports, compares backups to identify modifications to the network, and investigates the introduction of foreign software tools to help identify intruders, determine the extent to which the network has been compromised, and mitigate potential damages from the intrusion.

Employee Background Checks
Your employees are your front line in protecting your intellectual property from those who shouldn't have access to it. However, if you haven't explored the history of your employees, they may very well be the people you don't want accessing your most important data. Your company must also be aware of the current trend of "negligent hiring" claims being made around the country. In the case where an employee does harm to a client, another employee, or a business associate, your company could be held liable if you failed to perform the proper background checks before hiring them.

We can help provide you the information you need to make the correct hiring decision, protecting both your company and your data.

Intrusion Investigation
We can investigate documented intrusion attempts in to your network and situations where data was actually compromised. Through investigation, you can find the source of the attack, the techniques used, and how to correct these flaws. While it is always best to stop attacks before they happen, it is important to investigate any possible compromise of your intellectual property.

If you need quick, friendly, professional, cost effective and reliable Network Security consultancy services - then please contact the Coursefox today.
Visit the COURSE FOX's Netdefense at http://www.netdefense.co.uk

• Username:

• Password:

Forgot Password?

About Us | Cisco Courses | Locations | Testimonials | Contact Us | Course Booking | Terms & Condition | Privacy Policy | Articles | RSS Feed

Cisco, CCNA, CCDA, CCNP, CCDP, CCSP, CCIP, CCVP. CCIE, CCDE, Cisco IOS, Cisco Systems, the Cisco Systems logo, and Networking Academy are registered trademarks or trademarks of Cisco Systems, Inc. and/or its affiliates in the U.S. and certain other countries. All other trademarks mentioned on this Web site are the property of their respective owners. coursefox.co.uk is not responsible for the content of external links and cannot assure that all of them work. Copyright 2007 - 2009 coursefox.co.uk - Please also visit our Cisco CCIE Consultancy offerings: pronetexpert.com | cciehotline.com | netdefense.co.uk| techsupportwire.com