Assessment

When using network analysis tools, we measure your network’s current state of security and identify system vulnerabilities. After we analyze your network from inside and outside of your firewall, your management team will receive a detailed report of your firm’s current security level.

Vulnerability Assessment

During a vulnerability assessment, Domain’s trained IT professionals analyze a company’s network for security vulnerabilities, or weaknesses. For example, Domain investigates workstations (computers), firewalls, servers, and wireless connections. Vulnerability assessments are important for companies of all sizes, because even the smallest companies are frequently targets of cybercrime. Thus, Domain approaches vulnerability testing by following a proven-effective sequence of steps. Firstly, Domain takes an inventory of the system. Secondly, a level of importance is assigned to each component; how critical it is for the component in question to be secure? Thirdly, Domain scans each component for threats and vulnerabilities, finding the weaknesses of the components. Lastly, we mitigate the most crucial of the identified vulnerabilities in order to optimally secure the network as a whole.

Web Application Assessment

An internal computer network is protected by firewalls, antivirus, and other devices and tactics. Unfortunately, a Web server and Web applications are exposed to all of the threats around the world. Due to the infinite and increasingly intricate threats of the Web and its public-facing nature, Web application assessments are critical to the safety of a company’s data, privacy, and overall wellbeing. Therefore, Domain’s Web app assessments are ongoing and occur throughout the life of the application. Domain designed this process to uncover vulnerabilities, design flaws, and more. The goal of our Web app assessment is to perform an examination of the components and security mechanisms in place to protect the application, how the components interact, and what weaknesses exist. Domain also offers services to eliminate any weaknesses detected during the assessment.

Penetration Testing

Also known as a pentest, Domain performs purposeful software attacks on a computer system with the intent of uncovering a network’s security weaknesses. How easily can data be extracted from the computer system? The first step of Domain’s pentesting process is identifying the target systems and defining the goal of the testing. The next step is to achieve the predefined goal by reviewing the available information and taking the necessary actions, such as performing an attack on the system. By doing so, Domain can determine if a system is vulnerable to cyber-attacks by assessing its performance during the strenuous and purposeful attack. In other words, pentests put significant pressure on a network’s defenses to see if they can be broken down. On the other hand, the test can prove the security measures to be sufficient.

After a pentest is performed, Domain creates a high-level report of the test results and presents it to the owner and/or executive(s) of the firm. The report includes suggestions on how to mitigate the risks uncovered during the test. A more detailed report can also be provided to the firm’s IT department. Some common goals of pentesting are to: identify crucial system vulnerabilities; uncover vulnerabilities that may be hard to see from the surface; determine the effect an attack would have on business operations; test the strength of the network’s defense mechanisms; and determine appropriate security measures to eliminate the uncovered vulnerabilities.