Go to main content | Go to main menu

Penetration testing

What is a penetration test? 

Have you created a new server in the lab or just completed a website for a research project? Are you wondering if your website or the system is secure enough? Contact us, and our experts will test them using the penetration testing method.
What is it about? Penetration testing means we simulate a cyber-attack on a given system and thereby reveal its weak points. Thanks to the fact that we use the same techniques as real hackers, we can reliably verify the system's resistance to actual attacks.
After testing your site, we will provide you with a written report in which we will describe the problems found and, at the same time, give you recommendations on how to fix them.

 

Scope

The testing itself can take up to one week. We also need a few days to complete written report. In case of retest we also need another week plus a few days for final report.

Target group 

We only provide this service for subjects of Masaryk University. We don't perform testing of personal websites and for public subjects.

Price of testing

For the further development and functioning of our team of testers, we require financial cooperation to perform penetration testing of your systems. The price depends on many parameters, and we will happily make an offer for you. Contact us.  

Phases

  • 1. Agreement

    First, we have to agree on conducting the penetration test. In this phase, we gather all the information we need to start testing, agree on its scope and discuss the price.

  • 2. Penetration test

    In this phase the actual penetration testing can begin. If we find anything critical that cannot wait for the report, we will contact you. Otherwise, you won't know about the testing for the whole week (hopefully). 

  • 3. Initial report

    After the testing is done, we write a report with all our findings, their level of importance and our recommendations on how to fix them/avoid them in the future. The report consists of both high level information about identified vulnerabilities and low level technical details for your developers and administrators.

  • 4. Retest

    We give you some time for fixing the issues and after some time, we perform another test to check if the issues are really fixed. During this phase, other issues might arise. 

  • 5. Final report

    After all is done and retested, you get the final report with all the issues. 

 

Types of testing

Web penetration test

We provide manual penetration testing of web applications fortified by usage of industry-standard tools. We perform tests in accordance with the OWASP (Open Web Application Security Project) methodology.

More about OWASP

Infrastructure penetration test

For penetration testing of infrastructure and systems we also use industry-standard tools together with manual testing of our experts. We perform tests in accordance with PTES methodology.

More about ptes

Contact

Are you interested in penetration testing, or would you like to learn more? Do not hesitate to contact our experts!

Mgr. Andrej Tomči

Zástupce vedoucího pracoviště, Threat Management

Šumavská 416/15, 602 00 Brno

E‑mail:

You are running an old browser version. We recommend updating your browser to its latest version.