Intrusion tests are used to verify the information system’s level of
The type of test employed will depend on the needs:
- External intrusion test: this test consists in simulating the actions of a hacker, attempting to get to a point in the system that has been agreed with the client.
- Internal tests: these tests make it possible to
analyse the company’s internal security by making a number of attempts to intrude, without being a privileged user.
- Test in the Demilitarised Zone (dmz): this part of the network is where all
the services accessible from internet are usually found and, therefore, it is the part most
susceptible to attack and the area that requires
a high level of control.
As a complement to this service, a number of web application
analyses can be carried out to uncover security risks in the applications themselves.
In all cases, a detailed report is drawn up, together with
a series of recommendations.