Welcome to New Concepts in IT, LLC
Vulnerability testing is the process of looking at your IT resources such as web pages/servers, mail servers/services,
database servers, firewalls, screening routers... etc. as a hacker or intruder might see them and reporting any vulnerabilities
found back to you the resource owner.
Testing can be done from basically three different vantage points:
Internal - We are given access to your internal network.
DMZ - We are given access into your DMZ (the "demilitarized zone").
External - We have no access to your network and must view, test and report from completely outside your network.
Testing can be accomplished with or without any advance knowledge of your company's resources (example: type(s) of
firewalls in place). Testing can be done with or without advance notification to your security response team(s) so you can
test their response. Testing can be done in stealthy and non-stealthy ways.
Vulnerability testing differs from "penetration testing" in that penetration testing (aka White-Hat Hacking) actually takes the
next step and attempts to exploit the vulnerabilities found to gain access to your confidential systems, servers, networks