Biznet Bilişim Sistemleri ve Danışmanlık Sanayi Ticaret A.Ş.

ISO 27001 Services

Information Security Management Consulting Security Awareness Training

PCI DSS Compliance Services

SAQ Consulting On Site Audit Firewall Rule Analysis Services Internet Vulnerability Scanning Intranet Vulnerability Scanning On Site Pre-Audit Source Code Analysis Service Internet Penetration Test Intranet Penetration Test Firewall Rule Table Analysis Service Information Security Documentation Service

Vulnerability Management Services

Intranet Security Tests Internet-Based Attack and Penetration Tests Web Application Security Tests Source Code Analysis Service Firewall Rule Analysis Services Database Security Services

Product Installation and Configuration Services Product Maintenance Support Services

Identity and Access Management Services

Integration Services Role Management Analysis Services

Learn More...

	Send E-Mail

Intranet Security Tests

Intranet security tests include efforts to control servers and systems which need to be analyzed and accessed through the corporate network. These inspections include system configuration checks and security scanning against known security vulnerabilities. During these efforts, the following steps are taken:

1.Preparation Stage
In this stage, following the determination of the scope, the testing approach is selected and, if necessary, the systems to be chosen for the sample pool are determined as well.

2.Overall Security Scan and Discovery Stage
Overall scanning on the IP block in the local network is performed in this stage. This way, important sources of information are unearthed and a server-specific testing method is also determined.

3.Automatic Security Scanning
This stage is executed using the most appropriate tools for applications running on servers or systems in order to find security vulnerabilities.

4.Server and System Configuration Controls
In this step, the configuration of the server or the system (Windows or Unix operating systems, router/switch network equipment, firewalls, IPS and AV software) is analyzed and checked against any possible security vulnerabilities by connecting to them via an authorized user name.

5.Manual Control Stage
This stage includes detailed inspection by Biznet experts on data obtained and security vulnerabilities identified during the previous stages and the automatic scans. This step is important in order for reports to reflect the most accurate results.

In this step our experts use various application-specific approaches, as well as our unique scanning tools and scripts, to execute more advanced checks through manual methods in order to catch breaches that could be missed by automatic scan tools.

6.Reporting
In this stage, the results are presented in a clear way with enough technical details. The reports may be executive, with a high level presentation of the risks and risk remediation recommendations, or technical, with characteristics of the security vulnerabilities, and technical details on methods for removing these. Reports will be presented either in Turkish or English.

7.Verification Stage
This scanning is performed after the elimination of the security vulnerabilities by the organization in order to see the existence of any deficiencies. In this step, scan scope is limited to the possible existence of security vulnerabilities found during the first scanning.


Copyright © 2010 Biznet Bilişim Sistemleri ve Danışmanlık Sanayi Ticaret A.Ş.	Web Design: WS