What is an External Penetration Test?
An external penetration test is a type of security assessment that can evaluate the resiliency of your institution’s network perimeter. An external penetration test is often the first type of assessments that most organizations go through. It makes sense as most institution’s are concerned with tackling their Internet-facing weaknesses first. Preventing anyone from undermining your perimeter security and allowing for unauthorized access to applications and sensitive data is key. Or, worst of all, an underlying host server.
How Long Does a Web Application Penetration Test Take?
One of the first questions we hear often is, “How long does it take?” And, yes, “it depends” is part of the answer. However, we wanted to at least give you a rough idea of how long a web application penetration test takes for planning purposes. This blog also covers factors that go into the timeline, and how that time is spent.
Our Web Application Penetration Testing Methodology
One of the primary questions we get when it comes to web application penetration testing (including mobile applications and APIs) is about what methodology we use. Of course it’s natural for people to wonder how we’re going to go about testing their assets, and somewhat surprisingly, it can be hard to get this kind of information from your pen testers.
When Should I Penetration Test a New Web Application?
Over the years, clients have asked us when it’s the right time to penetration test a new web application. We like this question, because it recognizes the fact that a new application needs a penetration test. You never want to roll out a new application to production without testing it. If a new web application gets compromised it not only puts the application is at risk, but also all the systems in your environment.
SIG, Salesforce, and Personalized Marketing Engagement
After the pandemic, the University of Hawai’i at Manoa was dealing with many of the same challenges as other universities across the country with low enrollment numbers. They engaged SIG to help them use Salesforce to boost their enrollment and automate data processes. Hear Garret Yoshimi, VP for Information Technology and CIO, from the University […]
Top 5 Reasons Web Penetration Testing Quotes are Different
Crazy variations in pricing between companies is one of the most common complaints we hear from clients comparing penetration testing quotes. This isn’t a new problem and it can be frustrating. Especially when you’re trying to compare services that are more technical in nature. Information security consulting engagements or penetration testing may require some in-depth industry knowledge or past experience to understand exactly what your money is buying. This blog will explore some of the contributing factors to the variations in penetration testing quotes.
How much does a Web Application Penetration Test Cost?
This blog will remove some of the mystery behind pricing for web application penetration tests. One of our core tenets is honesty and transparency, so if we can clarify the process of scoping out a penetration test and help you understand how much a web application penetration is going to cost, it may make you more comfortable when comparing penetration testing firms. This blog will focus specifically on web application penetration testing. As this testing can be one of the most wildly different in terms of cost that we see across the industry.
Penetration Test vs. Vulnerability Scan
Knowing the difference between a penetration test and vulnerability scan is critical to optimizing your resources. And, making sure you are taking the necessary steps to reach compliance, secure your network, and determine your level of risk. At a high level: penetration tests are expensive and may be more than your institution needs. Conversely, vulnerability scans, are inexpensive. However, they do not provide the most thorough results. This blog will take a deeper dive into each and highlight the key differences.
