{"product_id":"pentest-black-box","title":"Pentest Black Box","description":"\u003ch4\u003ePenetration Testing is a cybersecurity technique that consists of simulating real attacks on an organization's system, network, or application. \u003cspan\u003e \u003c\/span\u003e\n\u003c\/h4\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003ch4\u003eA proactive way to test a system's defenses to ensure it is as secure as possible.\u003cspan\u003e \u003c\/span\u003e\n\u003c\/h4\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003ch4\u003eIt is like \"ethical hacking\" where specialized professionals, often called \"Ethical Hackers,\" attempt to breach the system in a controlled and legal manner.\u003c\/h4\u003e\n\u003cp\u003e \u003c\/p\u003e\n\u003ch4\u003eWhat is the main objective?\u003cspan\u003e \u003c\/span\u003e\n\u003c\/h4\u003e\n\u003cdiv\u003e\n\u003col\u003e\n\u003cli\u003eIdentify vulnerabilities and security flaws that could be exploited by malicious attackers.\u003c\/li\u003e\n\u003cli\u003eEvaluate the organization's real defense capability against cyber threats.\u003c\/li\u003e\n\u003cli\u003eProvide a detailed report of the flaws found, prioritizing them and indicating the necessary corrective measures to strengthen security before a real attack occurs.\u003c\/li\u003e\n\u003c\/ol\u003e\n\u003c\/div\u003e\n\u003cdiv\u003e\n\u003cspan\u003e \u003c\/span\u003e\u003cbr\u003e\n\u003c\/div\u003e\n\u003ch4\u003ePentest for Compliance and Certifications\u003c\/h4\u003e\n\u003cdiv\u003eA Pentest report is not just a technical guide for the IT team; it is a strategic and legally important document.\u003cspan\u003e \u003c\/span\u003e\n\u003c\/div\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003cdiv\u003eMany security regulations and standards require companies to perform penetration tests regularly to prove they are protected. The Pentest report serves as formal evidence that the organization has actively evaluated its security risks.\u003cspan\u003e \u003c\/span\u003e\n\u003c\/div\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003ch4\u003eThis is crucial for meeting the requirements of standards such as:\u003cspan\u003e\u003c\/span\u003e\n\u003c\/h4\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003cdiv\u003e\n\u003cstrong\u003ePCI DSS (Payment Card Industry Data Security Standard): \u003c\/strong\u003eEssential for any company that processes, stores, or transmits credit card data. The standard requires annual penetration tests and tests after significant network changes.\u003cspan\u003e \u003c\/span\u003e\n\u003c\/div\u003e\n\u003cdiv\u003e\n\u003cspan\u003e \u003c\/span\u003e\u003cbr\u003e\n\u003c\/div\u003e\n\u003cdiv\u003e\n\u003cstrong\u003eISO\/IEC 27001: \u003c\/strong\u003eOne of the most globally recognized information security certifications. Maintaining this certification often requires security audits, in which Pentesting plays a prominent role.\u003cspan\u003e \u003c\/span\u003e\n\u003c\/div\u003e\n\u003cdiv\u003e\n\u003cspan\u003e \u003c\/span\u003e\u003cbr\u003e\n\u003c\/div\u003e\n\u003cdiv\u003e\n\u003cstrong\u003eLGPD (General Data Protection Law) and GDPR (General Data Protection Regulation):\u003c\/strong\u003e Although they do not directly require Pentesting, these laws demand that companies implement effective technical measures to protect personal data. The Pentest report proves the company's diligence in testing and improving these measures, being vital in the event of an audit or incident.\u003cspan\u003e \u003c\/span\u003e\n\u003c\/div\u003e\n\u003cdiv\u003e\n\u003cspan\u003e \u003c\/span\u003e\u003cbr\u003e\n\u003c\/div\u003e\n\u003cdiv\u003e\n\u003cstrong\u003eSOC 2 (System and Organization Controls 2): \u003c\/strong\u003eAimed at service providers that store client information in the cloud. Pentesting helps ensure that data protection security controls are operating as promised.\u003cspan\u003e \u003c\/span\u003e\n\u003c\/div\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003ch4\u003eDifferentiators\u003c\/h4\u003e\n\u003cdiv\u003eService performed manually by one or more analysts.\u003cspan\u003e \u003c\/span\u003e\n\u003c\/div\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003ch4\u003eService Scope\u003c\/h4\u003e\n\u003cdiv\u003eThe scope is defined by the clients; it may cover servers, applications, web portals, internal or external environments.\u003cspan\u003e \u003c\/span\u003e\n\u003c\/div\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003ch4\u003eExpected Results\u003c\/h4\u003e\n\u003cdiv\u003eThe Client will be able to identify and prioritize the treatment of vulnerabilities in their tested environment.\u003cspan\u003e \u003c\/span\u003e\n\u003c\/div\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003ch4\u003eDeliverables\u003c\/h4\u003e\n\u003cdiv\u003eAn \u003cstrong\u003eINTRUSION TEST REPORT\u003c\/strong\u003e will be prepared and delivered for each test performed, covering, at a minimum, information such as:\u003c\/div\u003e\n\u003cdiv\u003e\n\u003col\u003e\n\u003cli\u003eObjectives;\u003c\/li\u003e\n\u003cli\u003eAssumptions and test scope;\u003c\/li\u003e\n\u003cli\u003eDates and times of the tests;\u003c\/li\u003e\n\u003cli\u003eVulnerability analysis methodology;\u003c\/li\u003e\n\u003cli\u003eDescription of actions performed; Methodologies;\u003c\/li\u003e\n\u003cli\u003eVulnerabilities found;\u003c\/li\u003e\n\u003cli\u003eCategorization and severity of vulnerabilities;\u003c\/li\u003e\n\u003cli\u003ePossible applicable issues;\u003c\/li\u003e\n\u003cli\u003eRecommendations and security controls necessary for correcting vulnerabilities;\u003c\/li\u003e\n\u003cli\u003ePresentation of collected evidence;\u003c\/li\u003e\n\u003cli\u003eResearch sources;\u003c\/li\u003e\n\u003cli\u003eReferences and tools used;\u003c\/li\u003e\n\u003cli\u003eInformation accessed and other evidence of the intrusion's success.\u003cspan\u003e \u003c\/span\u003e\n\u003c\/li\u003e\n\u003c\/ol\u003e\n\u003c\/div\u003e\n\u003ch4\u003e\u003cbr\u003e\u003c\/h4\u003e\n\u003ch4\u003eDelivery Format\u003c\/h4\u003e\n\u003cdiv\u003ePDF report with a presentation by the Infomach team.\u003cspan\u003e\u003c\/span\u003e\n\u003c\/div\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003ch4\u003eSuccess Criteria\u003c\/h4\u003e\n\u003cdiv\u003eThe tested Client must certify that their technical team will make the necessary corrections to reduce or eliminate identified vulnerabilities and risks.\u003cspan\u003e \u003c\/span\u003e\n\u003c\/div\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003ch4\u003eCommon Challenges We Address\u003c\/h4\u003e\n\u003cdiv\u003eCompanies that want to test how susceptible their environment is to a hacker attack.\u003cspan\u003e\u003c\/span\u003e\n\u003c\/div\u003e\n\u003cdiv\u003e\n\u003cspan\u003e\u003c\/span\u003e\u003cbr\u003e\n\u003c\/div\u003e\n\u003ch4\u003eGuarantees\u003c\/h4\u003e\n\u003cdiv\u003eThe test will be executed during windows pre-scheduled with the clients.\u003cspan\u003e \u003c\/span\u003e\n\u003c\/div\u003e\n\u003cdiv\u003e\u003cbr\u003e\u003c\/div\u003e\n\u003ch4\u003eIncluded Items\u003c\/h4\u003e\n\u003cdiv\u003eThe client may perform a retest on the same tested environment within 6 months after contract signing. At no additional cost.\u003c\/div\u003e","brand":"Infomach","offers":[{"title":"5","offer_id":52119973658805,"sku":null,"price":303000.0,"currency_code":"VUV","in_stock":true},{"title":"6","offer_id":52119973691573,"sku":null,"price":362000.0,"currency_code":"VUV","in_stock":true},{"title":"7","offer_id":52119973724341,"sku":null,"price":420000.0,"currency_code":"VUV","in_stock":true},{"title":"8","offer_id":52119973757109,"sku":null,"price":480000.0,"currency_code":"VUV","in_stock":true},{"title":"9","offer_id":52119973789877,"sku":null,"price":535000.0,"currency_code":"VUV","in_stock":true},{"title":"10","offer_id":52119973822645,"sku":null,"price":591000.0,"currency_code":"VUV","in_stock":true},{"title":"11","offer_id":52119973855413,"sku":null,"price":650000.0,"currency_code":"VUV","in_stock":true},{"title":"12","offer_id":52119973888181,"sku":null,"price":705000.0,"currency_code":"VUV","in_stock":true},{"title":"13","offer_id":52119973920949,"sku":null,"price":760000.0,"currency_code":"VUV","in_stock":true},{"title":"14","offer_id":52119973953717,"sku":null,"price":811000.0,"currency_code":"VUV","in_stock":true},{"title":"15","offer_id":52119973986485,"sku":null,"price":865000.0,"currency_code":"VUV","in_stock":true},{"title":"16","offer_id":52119974019253,"sku":null,"price":920000.0,"currency_code":"VUV","in_stock":true},{"title":"17","offer_id":52119974052021,"sku":null,"price":970000.0,"currency_code":"VUV","in_stock":true},{"title":"18","offer_id":52119974084789,"sku":null,"price":1022000.0,"currency_code":"VUV","in_stock":true},{"title":"19","offer_id":52119974117557,"sku":null,"price":1074000.0,"currency_code":"VUV","in_stock":true},{"title":"20","offer_id":52119974150325,"sku":null,"price":1125000.0,"currency_code":"VUV","in_stock":true},{"title":"21","offer_id":52119974183093,"sku":null,"price":1175000.0,"currency_code":"VUV","in_stock":true},{"title":"22","offer_id":52119974215861,"sku":null,"price":1225000.0,"currency_code":"VUV","in_stock":true},{"title":"23","offer_id":52119974248629,"sku":null,"price":1274000.0,"currency_code":"VUV","in_stock":true},{"title":"24","offer_id":52119974281397,"sku":null,"price":1323000.0,"currency_code":"VUV","in_stock":true},{"title":"25","offer_id":52119974314165,"sku":null,"price":1370000.0,"currency_code":"VUV","in_stock":true},{"title":"26","offer_id":52119974346933,"sku":null,"price":1420000.0,"currency_code":"VUV","in_stock":true},{"title":"27","offer_id":52119974379701,"sku":null,"price":1466000.0,"currency_code":"VUV","in_stock":true},{"title":"28","offer_id":52119974412469,"sku":null,"price":1513000.0,"currency_code":"VUV","in_stock":true},{"title":"29","offer_id":52119974445237,"sku":null,"price":1559000.0,"currency_code":"VUV","in_stock":true},{"title":"30","offer_id":52119974478005,"sku":null,"price":1604000.0,"currency_code":"VUV","in_stock":true},{"title":"31","offer_id":52119974510773,"sku":null,"price":1650000.0,"currency_code":"VUV","in_stock":true},{"title":"32","offer_id":52119974543541,"sku":null,"price":1694000.0,"currency_code":"VUV","in_stock":true},{"title":"33","offer_id":52119974576309,"sku":null,"price":1739000.0,"currency_code":"VUV","in_stock":true},{"title":"34","offer_id":52119974609077,"sku":null,"price":1782000.0,"currency_code":"VUV","in_stock":true},{"title":"35","offer_id":52119974641845,"sku":null,"price":1825000.0,"currency_code":"VUV","in_stock":true},{"title":"36","offer_id":52119974674613,"sku":null,"price":1868000.0,"currency_code":"VUV","in_stock":true},{"title":"37","offer_id":52119974707381,"sku":null,"price":1910000.0,"currency_code":"VUV","in_stock":true},{"title":"38","offer_id":52119974740149,"sku":null,"price":1952000.0,"currency_code":"VUV","in_stock":true},{"title":"39","offer_id":52119974772917,"sku":null,"price":1994000.0,"currency_code":"VUV","in_stock":true},{"title":"40","offer_id":52119974805685,"sku":null,"price":2034000.0,"currency_code":"VUV","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0979\/5790\/4565\/files\/Services_Infomach.png?v=1768226230","url":"https:\/\/marketplace.thecloudcircle.io\/products\/pentest-black-box","provider":"The Cloud Circle","version":"1.0","type":"link"}