Ethical Hacking / IT Security

Churchill Security’s Ethical Hacking and Information Technology Service ensures that your organisations security measures are actively analysed for design weaknesses, technical flaws and vulnerabilities. The results are then delivered comprehensively in a report to Management and Technical audiences.

Our Ethical Hacking approach closely simulates the process of a real hacker. If someone is targeting your organisation specifically, then there is a strong possibility that they do indeed have detailed knowledge of your IT systems and procedures (an employee with a grudge for example). In which case it would be wise to assume that they in fact have complete knowledge of your systems because if your security relies solely on the secrecy of your designs, then you do not have any tangible security at all.

Penetration Testing
A penetration test is the process of actively evaluating your information security measures. There are a number of ways that this can be undertaken, but the most common procedure is that the security measures are actively analysed for design weaknesses, technical flaws and vulnerabilities. A penetration test will involve the systematic analysis of all security measures in place.

These include:

• Network Security
• Network Surveying
• Port Scanning
• System Identification
• Services Identification
• Vulnerability Research & Verification
• Application Testing & Code Review
• Router Testing
• Firewall Testing
• Intrusion Detection System Testing
• Trusted Systems Testing
• Password Cracking
• Denial of Service Testing
• Containment Measures Testing

Features and Benefits of the Service
• Identify the threats facing your organisation's information assets.
• Reduce your organisation's IT security costs and provide a better return on IT security investment (ROSI) by identifying and resolving vulnerabilities and weaknesses.
• Provide your organisation with assurance - a thorough and comprehensive assessment of organisational security covering policy, procedure, design and implementation.
• Adopt best practice by conforming to legal and industry regulations.