Grey-Box Testing
Our Manual Penetration Test service is a grey-box test, and this separates it from a fully realistic attack simulation - as we aim to provide with our Red Teaming engagements - on both ends of the life cycle of an attack: reconnaissance and post-exploitation.
Reconnaissance. We work with a degree of pre-knowledge about the architecture of your system, which lets us spend our time on depth rather than reconnaissance. While this somewhat reduces realism, it saves time and can increase the comprehensiveness of the test. This pre-knowledge does not extend to precise details of your systems, only to the general information needed to identify attack paths worth pursuing.
Post-Exploitation. A core aspect of a real attack is what happens after an attack - evading detection by security teams, lateral movement to compromise additional systems, escalating privileges to gain access to the actual target of the attack. Our Manual Penetration Test engagements simplify or eliminate these steps as we primarily are testing the ability of an attacker to compromise your systems - not the effectiveness of your organisation at responding to an attack. This engagement does not involve testing how security operation centres or other security teams perform at detecting and responding to an attack, or the ease with which an attacker already inside a system could exfiltrate or compromise critical data. Those seeking such testing should consider our Red Teaming or Breach Impact engagements instead. Our Manual Penetration Tests merely demonstrate attack paths, and stop short of testing our ability to acquire undetectable, persistent access to your systems.