Portfolio

Security testing of corporate network

The company reached out to a1qa to assess the security level of the network.

Cybersecurity testing

Financial services

Overview
Services offered
Project scope
Technologies & tools
Results

Overview

The company developed a corporate network to store user and corporate data. The network was also developed as a communication channel for the employees. The company contacted a1qa to ensure the security of the product. Major points were to secure corporate data and protect internal infrastructure from unauthorized access.

Services offered

Cybersecurity testing

Project scope

In the course of the project, the testing was divided into two parts. The passive scanning was performed during business hours, while the active testing phase was organized outside the working hours.

DoS attacks were run during limited and preliminary agreed hours, remote access to the network was provided via the VPN connection.

The QA team was scaled up in order to accelerate the testing procedures. Scripts development for the automation of manual checks was implemented to increase test efficiency.

At the end of the testing period, the specialists created detailed defect reports and elaborated security recommendations.

The project was completed successfully and the client was willing to prolong cooperation.

Challenges and solutions

Incorrectly set-up system:

The team analyzed configuration of network devices
Specialists checked compliance with manufacturer recommendations
a1qa met industrial and international standards.

The production environment was unavailable during business hours:

File configuration was analyzed
Active network scanning outside working hours was performed.

Non-defined system vulnerabilities:

The team ran penetration testing.

Technologies & tools

Unix
Debian
SQL Server
LDAP
DNS
MySQL
Nmap Project
Kali Linux
Metasploit
PortSwigger Web Security
XSpider
Red Hat Linux
Windows Server 2012
PostgreSQL
SharePoint
Snort
Cisco
Nessus Vulnerability Scanner
Kaspersky Lab
RSA Security Analytics
Rapid7 Nexpose
OWASP

Results

In numbers

person-months in project efforts

2,000

pages of written documentation

4,500

configuration tests performed

QA engineers on the project

Get in touch

Name

Please fill in the required field.

Email address seems invalid.

Company

Phone

Project description

Please fill in the required field.

I hereby give my consent for a1qa and its affiliates to process my personal data in accordance with Privacy and Cookies Policy for the purpose of handling my request and responding to it. I am aware of the fact that I have the right to withdraw my consent at any time. Please accept the terms to proceed.

This file is too large

Up to 5 attachments. File must be less than 5 MB.
Allowed types: jpg, jpeg, png, svg, pptx, pdf, doc, docx, ppt, odt

File input 1 File input 2 File input 3 File input 4 File input 5

We use cookies on our website to improve its functionality and to enhance your user experience. We also use cookies for analytics. If you continue to browse this website, we will assume you agree that we can place cookies on your device. For more details, please read our Privacy and Cookies Policy.

Full-cycle testing services

Engagement models

Quality engineering

Complete test coverage

Systems & platforms