• Home
• About Us
• Security Services
• Training
• Free eBook & Links
• Testimonials
• Contact Us

Services: Penetration Test, IT Network Security Assessments &
Government IT Security Compliance

NetDefense offers comprehensive Penetration Tests and Security assessments to ensure that our customers are safe from both internal and external threats. Any Service can contain any of the following modules and can be tailored to meet the exact needs of our clients.

...Did you know that 90% of all current IT Systems have vulnerabilities?...

Download our Services Catalogue:


1. In English
2. En Español


A Penetration Test / Security Audit can contain any of the following modules:

Our Security Services:

Internet Security Assessment
Intranet Security Assessment
Dial-in RAS Security Assessment
Web Application Assessment
Wireless Assessment
Social Engineering Assessment
Telecommunications Assessment
Database Assessment
Physical Security Assessment
Forensic Analysis
Employee Background Checks
Locating Individuals
Intrusion Investigation      
Cisco IP Video Surveillance and Physical Security Consulting

Internet Security Assessment
Any device with access to the Internet is a potential open door to would-be hackers. We provide vulnerability assessments during which we closely map the network architecture, examine all open ports, hosts and services with access to the Web, and ensures that these network devices are secure. Defensive thinking gathers information such as domain names, IP network ranges, operating system and applications, to identify systems on the network, how they are related, the services that are exposed through open ports (such as http, SMTP, terminal services, etc.). Once open ports and attached services are identified, we determine whether each service has been updated with the most recent patches and identifies other vulnerabilities located within the exposed services.

In addition to conducting vulnerability assessments, we perform more rigorous penetration tests in which the information gathered from the assessment is used to attempt to penetrate the network. This more thorough procedure can confirm whether potential vulnerabilities are, in fact, capable of being exploited to expose the network.

Following all vulnerability assessments and penetration tests, we use the information we gather to prepare a thorough vulnerability analysis and offers recommendations for strengthening network security.

Intranet Security Assessment
While outside threats must be guarded against, business must also protect against potential threats from within their own networks. Using many of the same techniques and procedures for Internet Security Testing, we provide Intranet risk assessment and analysis to protect against the potential threat posed by insiders.

Depending on the client’s needs, intranet testing can be performed by us under varying degrees of disclosure of network information from the client, for example with or without network accounts.

Dial-in RAS Security Assessment
Dial-in links pose a potential threat to the integrity of the network security system. We examine dial-up connections that allow employees to access the network through public telephone lines or other dial-up connections. Given a range of telephone exchanges that may include modems, we can identify target numbers that allow for remote access. Using these numbers, we attempt to exploit vulnerabilities in the system and gain access to the network. We can also assess risks posed by the exposure of dial-up connections to the public telephone network which might undermine the client’s own internal security architecture.

Web Application Assessment
This assessment examines what services are being offered on Web-based portals and e-commerce applications to examine potential vulnerabilities with respect to authentication, authorization, data integrity, data confidentiality, and consumer privacy concerns. We can test these applications using either zero-knowledge testing or full-access testing to examine the full range of potential vulnerabilities. We also conduct source code audits to identify any potential vulnerability among the applications and scripts that are accessible through the Web.

Wireless Assessment
Wireless networks, while highly convenient, present additional security threats since the wireless signals are not limited by the physical boundaries of a traditional network. We evaluate how to prevent wireless communications from being exposed to eavesdropping and access by unauthorized intruders. Additionally, we examine the enterprise infrastructure for unencrypted or standard WEP enabled access points that may be vulnerable in order to ensure the security of the network.

Social Engineering Assessment
Social engineering involves manipulating and/or deceiving company employees and other human resources to gain unauthorized access to a network or to confidential information. We are a premier consulting firm in our ability to identify weak links in the security chain through exploitation of human vulnerabilities. We leverage our unparalleled expertise in this field to expose what is often the weakest link in the information security apparatus:
the human element.

Once individual or systemic weaknesses are identified, we recommend procedures designed to ensure that employees do not divulge information that could compromise company assets. The social engineering assessment not only uses tactics intended to gain confidential information, but also to induce unsuspecting employees to create vulnerabilities that can subsequently be exploited to gain access to confidential information.

Telecommunications Assessment
We have unique experience testing vulnerabilities in private bank exchanges that operate company voicemail and messaging systems. Unauthorized access to these systems can allow an intruder to eavesdrop on and manipulate employee voicemail messages, initiate outgoing calls from internal company lines, and access corporate telephone networks and directories.

Database Assessment
Client lists, credit card records, and other confidential information held in databases must be given particular protection from unauthorized disclosure. We test database integrity to determine whether any vulnerability may compromise this sensitive information.

Physical Security Assessment
Access to confidential information can often be obtained by simply gaining physical access to company premises. We conducts on-site surveillance to assess physical security and uses social engineering, pass key duplication, and other techniques designed to gain physical entry into secure areas and the network system.

In addition, we offer Security consulting Services on all kind of Security equipment such as GPS tracking, bugs & taps and detectors, listening devices, telephone encryption, telephone recorders, audio bugs, cellular encryption and telephone encryption, wireless jammers, voice changers, night vision monocular and binoculars, counter surveillance equipment, covert video surveillance, generic CCTV, biometrical recognition, personal security and self defense.

Please note that consulting on those services may not necessarily be available to companies & individuals and some of them are offered to government agencies only. Please contact us for more details.

Forensic Analysis
In addition to preventing future attacks, we can conduct forensic analysis to evaluate past security breaches. This analysis examines log reports, compares backups to identify modifications to the network, and investigates the introduction of foreign software tools to help identify intruders, determine the extent to which the network has been compromised, and mitigate potential damages from the intrusion.

Employee Background Checks
Your employees are your front line in protecting your intellectual property from those who shouldn't have access to it. However, if you haven't explored the history of your employees, they may very well be the people you don't want accessing your most important data. Your company must also be aware of the current trend of "negligent hiring" claims being made around the country. In the case where an employee does harm to a client, another employee, or a business associate, your company could be held liable if you failed to perform the proper background checks before hiring them.

We can help provide you the information you need to make the correct hiring decision, protecting both your company and your data.

Locating Individuals
Even though this service isn't directly security related, we can locate individual persons for you - worldwide. We use modern cutting edge telecommunication techniques and investigation methods to for example locate an old classmate, a relative who immigrated to another country or a friend you lost touch with. We have developed our own unique location tracking methodology which takes the 6-degrees-of-separation model into account.      

Intrusion Investigation
We can investigate documented intrusion attempts in to your network and situations where data was actually compromised. Through investigation, you can find the source of the attack, the techniques used, and how to correct these flaws. While it is always best to stop attacks before they happen, it is important to investigate any possible compromise of your intellectual property.

Cisco IP Video Surveillance and Physical Security Consulting
The Cisco IP Video Surveillance solution is a flexible, comprehensive and complete solution to manage Physical Security. It integrates smoothly with existing, legacy CCTV camera solutions or can be operated on a pure IP level. It offers live and archived streams in all common media formats and provides archived storage for video streams.

The NetDefense Security consultants are at the forefront of technology and can help you migrating to or installing a full IP Video Surveillance Solution in order to save huge amounts on operational costs.

Our consultancy services include:

- Business Consultancy on why to migrate to a Cisco IP Video Surveillance Solution
- Re-Design, Design, Operation, Configuration, Troubleshooting and Maintenance of Cisco IP Video Surveillance Solutions including: Stream Manager, underlying Solaris infrastructure, analogue cameras,
digital IP cameras, dashboards, PTZ cameras, domes, Video Manager and Storage System (VMSS), Video Surveillance Manager (VSM), Encoders, Decoders, Video Surveillance Operation Manager (VSOM) and
Cisco IP Video Surveillance solutions for the ISR (Integrated Services Router).

Bookmark / Email this page

Copyright © 2006 - 2009 netdefense.co.uk. All rights reserved. This material is not endorsed by, sponsored by or affiliated with any of the vendors mentioned. We are not responsible for the content of external links. Netdefense  - Your Experts on Penetration Testing, Ethical Hacking, Security Audits & Network Security Assessments.
Please also visit our Cisco CCIE Consultancy and Cisco Training Services Offerings: pronetexpert.com | cciehotline.com | coursefox.co.uk