7 min read
Access Control Facades and Hardcoded Secrets: A Sage 300 Case Study (Part 3)
This is a continuation of the Sage 300 case study series where we explore the process of discovering and developing...
Protect against potential threats and risks
Infrastructure Penetration Testing
We bring years of in-depth network penetration testing experience to each engagement, understanding both the vulnerabilities which cause serious breaches and the tools and tactics leveraged by attackers to exploit them.
Web Application Penetration Testing
We are industry leaders in both black-box and white-box web application penetration testing. Our objective-based manual testing methodologies identify vulnerabilities entirely missed by industry-standard “checklist” assessments and automated tools.
Mobile Application Penetration Testing
Source code review alone can miss critical mobile application vulnerabilities. With focus on dynamic analysis, we evaluate apps via real-time execution to identify vulnerabilities unique to mobile implementations.
Phishing and Social Engineering
Most cyber security incidents stem from phishing attacks. We have developed a uniquely sophisticated phishing simulation and social engineering offering to evaluate your employees’ security awareness before threat actors do.
Physical Security Testing
Our physical security assessments evaluate controls that are designed to deny unauthorized access to facilities, equipment, and resources. Control Gap works with you to break in, sit at your desk, steal your pens, or adjust your chair.
Red-Team Assessments
Our red-team offering combines all of our sophisticated service lines to target your crown-jewel assets, assessing your infrastructure, applications, and employees against the full suite of tactics leveraged by today’s elite threat actors. Our web-based platform allows us to collaborate with your security team in evaluating your detection and response capabilities in real-time.