What is penetration testing?

Penetration testing (aka "ethical hacking") is a set of actions, performed by Certified Ethical Hackers from EASI, that will replicate malicious behaviors in order to check that your IT infrastructure or the defined scope is correctly protected and configured.

EASI Penetration Test

The penetration test can be based on the "white box" or "black box" principles:

White box

White box means that EASI gets as much information as possible about the network beforehand.

Black box

Black box means that EASI starts from scratch and performs more reconnaissance actions before starting the actual pentest.

What do we do during a penetration test?

Here is a non-exhaustive list of actions that can be performed during a penetration test:

  • Vulnerability scanning
  • Vulnerability exploitation
  • SQL injection, XSS manipulation, URL manipulations...
  • Fuzzing
  • Social engineering
  • Phishing
  • Use of evasion techniques
  • Password cracking/ brute forcing
  • Spoofing
  • ...
Penetration test options

Penetration test report

A detailed report will be provided after the test. This report contains the flaws we were able to exploit / "circumvent". You will also be able to check the weaknesses against their exploitation status and recommendations with the solutions on how to fix them. 

Last but not least, EASI also aims at pointing out weaknesses that we were not able to exploit during the penetration tests, but where unauthorized access may be gained over time. This is important as the timing of our test is limited, but malicious hackers have all the time in the world!

We are already helping them

Friends of Europe
Ter Molst
Technical Airborne Components Industries
Synlab
Van De Velde
Delfood
Logo_OCW
Médecins Sans Frontières

Want to know more about our Penetration Testing services?

Recent articles

Security
Christophe Verhaeghe
Christophe Verhaeghe
04/01/2021
With 2020 behind us, now is the time to look back on an agitated year and learn how we can make 2021 the year of IT Security! We have some insights we'd like to share with you in a blog post.
Security
Benjamin Schmits
Benjamin Schmits
30/12/2020
Have you suffered a hacking attack in the last 12 months? You're not alone. 75% of organizations are in the same boat as you.
Security
Maxime Lamarche
Maxime Lamarche
15/12/2020
The DNS (Domain Name System) protocol was developed a long time ago and security was not part of the process. Nowadays, security is a major concern and developers are redesigning old protocols to add more security. For DNS, two different approaches are proposed, DNS over TLS (DoT...