• Français
  • English

INTERNAL PENTEST

You want to check the robustness of your internal infrastructure, those of your entities, to target your domain controllers and the associated trust relationships, the correct implementation of network access controls or to check the correct deployment of server and equipment updates and patchs?

Main challenges

  • ensure that security policies are applied on all internal assets
  • put in place measures to protect against attacks and/or implement active sureveillance
  • use robust base system and application, appropriately configured
  • deploy security updates on equipment, systems and applications
  • apply network segmentation to prevent access from unnecessary services
  • answer questions that can be addressed through specific tests, e.g.

Our solutions

Get support from the expertise of our pentest team to help you identify security weaknesses in your internal information system:
  • confirmed profiles with specific skills for internal penetration tests
  • use of many attack methods, including those described in the MITRE ATT&CK repository, to reach the objectives
  • a step-by-step approach: network discovery, privilege escalation, lateral movement, server takeover, AD domain compromise
  • the possibility to benefit from the expertise of the QLab Desktop team in order to bypass security equipment (EDR, antivirus, etc.)
To access the main works realized by our teams : visit our blog