Wireless Network Penetration Test

Description

Your challenge

Employing a wireless solution can offer greater flexibility, but it comes with greater potential for attack by expanding your organization’s logical perimeter. An insecure wireless network opens up your organization to the external world and poses a security risk. From rogue access points to weak encryption algorithms, threats to wireless networks are unique and the risks can be significant. By completing a Wireless Network Penetration Test, you can:

• Understand the level of risk that wireless networks pose to your organization and how to mitigate this risk
• Ensure greater flexibility for users, while maintaining the confidentiality and integrity of your data
• Maintain compliance with compliance schemes such as the PCI DSS

Our service offering:

• A detailed consultation to identify the depth and breadth of the tests required, with careful scoping of the test environment to establish the exact extent of the testing exercise.
• A range of manual tests conducted by our team of highly skilled penetration testers using a methodology closely aligned with the Open Source Security Testing Methodology (OSSTM).
• A series of wireless surveys of the scoped environment, with automated and manual identification of vulnerabilities.
• Immediate notification of any critical vulnerabilities in order for you to take action quickly.
• A detailed technical report that details the identified vulnerabilities (ranked in order of significance).
• A list of recommended countermeasures to address any identified vulnerabilities.
• An executive summary that explains in business terms what the risks mean

Why choose us?

• You receive a tailored assessment that applies to your business and relevant threats, not a generic assessment of theoretical risks.
• Our consultants are experienced in testing wireless networks.
• You receive a clear report that prioritizes the risks relevant risks to your organization so you can easily remediate any vulnerabilities.
• We cover all major vendors including Cisco, D-link, Aruba, and Dell/Aerohive,

Conditions

• Testing of two SSID/ESSIDs with full WLAN assessment, including the identification of rogue access points, non-encrypted data, WEP key security, DoS and MAC spoofing.
• Quote covers one fixed business premise with a floor space of up to 500m².
• Consultant expenses related to travelling, etc. are not included in the price.
• On-site presentation of report findings and remedial consultations can be provided upon request at an additional cost.
• Discounts for multiple tests only apply when a two- or three-year contract is agreed at the purchase of the first test; discounts cannot be backdated. Each penetration test will be invoiced annually (in the year of the test). An invoice will be issued 28 days before the planned test.