ENG vulnerability assessment - Skybackbone Engenio

VULNERABILITY ASSESSMENT

The Vulnerability Assessment assesses the security of the systems with respect to the known potential vulnerabilities.

The Skybackbone analysis ensures the respect of the highest confidentiality standards, it allows companies to understand their degree of exposure to vulnerabilities and to take remediation preventive actions.

The final report is composed by an “executive summary” usable from the top management and a more technical part made for the technical personnel.

Ours Vulnerability Assessment considers aspects such as asset management, systems ageing, patch management, event monitoring, password policy, least privilege, application whitelisting, the effectiveness of antivirus and anti malware solutions, network isolations, systems and channels encryption, usability of default credentials… etc…

The document contains an “action plan” where next to the results of the analysis in critical priority order, we evaluate the effort level required for the resolution and mitigation of revealed vulnerability.

PENETRATION TEST

The Penetration Test is a simulated, authorized attack, which aims to violate the systems by exploiting possible weak points, as well as verify how a company responds to a potential security breach in compliance with security policies.

As for the Vulnerability Assessment, Skybackbone guarantees that this type of activity is performed by well prepared personnel in respect to the highest confidentiality standards.

This analysis, different but complementary to the Vulnerability Assessment, is performed pointing specific targets (public IP) agreed first with the client, it provides:

Discovery activity of the tools and frameworks in use
Manual verification activities on all the services identified as weak or critical inside the attack layer
Manual analysis based on the guidelines OSSTMM/OWASP
Attack repetitions

The results of the vulnerabilities are shown in order of relevance, a proposed resolution and the level of effort required for the solution found.

For more information, contact us.

Cookie	Durata	Descrizione
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_gat_gtag_UA_139549957_1	1 minute	Set by Google to distinguish users.
_gid	1 day	Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
CONSENT	2 years	YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data.

Cookie	Durata	Descrizione
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt.innertube::nextId	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.

VULNERABILITY ASSESSMENT

PENETRATION TEST

PRIVACY POLICY

Lavora con noi

skybackbone engenio srl | Carpi (Modena) | 059 868 0754 | info@skybackbone-engenio.com | p. iva IT03512590369