LAN Security Assessment (LANSA)

Internal vulnerability analysis and penetration testing to provide assurance that user LANs are well secured including end-user systems such as desktops, workstations and laptops, as well as LAN servers, and other LAN devices. Illumant performs internal vulnerability analysis and penetration testing of systems on the corporate LAN(s) from behind firewalls to provide validation of layered-security and defense in depth. The LANSA indicates vulnerabilities that affect large numbers of similar systems (e.g. desktops), but also highlights outlier systems that are exceptionally vulnerable comparatively.


Highlights

  • Scanning to create a baseline of vulnerabilities and security risks
  • Best-of-breed open source and commercial vulnerability harvesting tools
    • A cross section is used to limit exposure to the limitations of any single tool, and reap the benefits the strengths each tool provides
  • Manual validation to eliminate false positives, confirm findings
  • Manual testing to find additional vulnerabilities not found by scanning tools
  • Penetration testing through custom-designed and pre-existing exploits to test real severity
    • Illumant’s pen testing and manual testing techniques are continually updated through research and participation in hacker forums and conferences (e.g. BlackHat, DEFCON, SANS)
  • Classification of severity of findings
  • Remediation recommendations
  • Benchmark analysis of results vs. industry

Targets

LANs, desktops, workstations, laptops, printers, LAN devices, applications, services, ports, protocols from within firewall boundaries – unfiltered analysis:

  • Desktops
  • Workstations
  • Laptops
  • LAN servers
  • Switches
  • Printers
  • Other LAN Devices
  • 100,000+ known vulnerabilities, unique vulnerabilities from custom designs, configurations and software

internal vulnerability assessment manual validation penetration testing practical remediation advice exploits

internal systems/networks (internal perspective) desktops laptops printers LAN servers other LAN devices

PCI HIPAA GLB best-practices