PENETRATION TESTING

Identification Of IT & OT infrastructure
vulnerabilities

IN PROUD PARTNERSHIP WITH

 

01

BLACK BOX
PENETRATION
TESTING

Performed having limited or no knowledge of the infrastructure on board and simulates an attacker from the internet.

02

GREY BOX
PENETRATION
TESTING

Performed having limited knowledge of the infrastructure on board but simulates an attack from an “insider”, for example guests or unauthorized users from third parties that have access to vessel’s internal infrastructure.

03

WHITE BOX
PENETRATION
TESTING

Performed having full knowledge of the infrastructure on board and having elevated privileges such as an internal user/crewmember inside the vessels internal network. This scenario can also simulate the scenario of an external attack from hackers who have managed to gain remote access to an internal asset.

FEATURES

Identifying Vulnerabilities

Proactively identifies and mitigates IT vulnerabilities, preventing potential exploitation by cybercriminals.

ASSESSING REAL-WORLD RISK

Simulate real attacks, aiding in prioritizing security based on actual risk, not just theoretical scenarios.

VALIDATING SECURITY CONTROLS

Validates security controls like firewalls, intrusion detection systems & access controls, ensuring proper configuration & capacity.

COMPLIANCE & REGULATION

Aids in meeting industry & regulatory compliance by conducting regular security assessments as mandated.

BENEFITS