Agent Mode
English
    Listing Thumbnail

    Infrastructure Penetration Testing

     Info
    Sold by: Cognisys 
    A comprehensive, manual security assessment of network infrastructure to identify vulnerabilities, misconfigurations, and weaknesses. Delivered by CREST-certified consultants using advanced manual techniques and industry-standard tooling. Scope Options: External & Internal: Perimeter defenses, firewalls, lateral movement, and domain compromise. Cloud Security: AWS, Azure, and GCP environment configurations, IAM, and logging. Active Directory: Trust relationships, privilege escalation, and attack path management. Wireless & Configs: WPA3, segmentation validation, and CIS Benchmark build reviews. SaaS Security: Microsoft 365 and Google Workspace configuration reviews. Deliverables: Executive summary detailing risk-rated findings. Technical report with evidence, reproduction steps, and prioritized remediation. Optional remediation verification retest.

    Overview

    Try agent mode
    Create proposal
    Ask question

    Comprehensive, manually-led security assessment of network infrastructure to identify exploitable vulnerabilities, misconfigurations, and weaknesses. All testing conducted by CREST-certified consultants using a combination of manual techniques and industry-standard tooling.

    Scope may include any combination of: external penetration testing of internet-facing infrastructure including perimeter devices, firewalls, VPN gateways, web servers, mail servers, DNS, and publicly accessible services; internal network penetration testing simulating an attacker with network access including lateral movement, privilege escalation, and domain compromise paths; cloud infrastructure security assessment covering AWS, Azure, and GCP environments including IAM, storage, network security groups, logging, and cloud-native services; Active Directory security assessment including domain enumeration, Kerberoasting, AS-REP roasting, DCSync attack paths, trust relationships, and privilege escalation vectors; wireless network penetration testing including rogue AP detection, WPA/WPA2/WPA3 assessment, evil twin attacks, and segmentation validation; firewall rule review and network segmentation testing; build and configuration reviews against CIS Benchmarks; VPN, VLAN, and VOIP assessments; Google Workspace and Microsoft 365 security configuration reviews; backup and recovery procedures review; endpoint payload assessment; password audit; attack path management; and network segregation assessment.

    Deliverables: executive summary with risk-rated findings; detailed technical report with evidence, reproduction steps, and remediation guidance prioritised by exploitability and business impact; optional remediation verification retest.

    Highlights

    • All assessments are manually led by CREST-certified consultants, combining advanced human intelligence with industry-standard tooling to uncover deep, complex misconfigurations that automated scanners miss.
    • You form part of the pen testing team from day one; with dedicated Slack channel setup and real-time updates, you are alerted to critical issues immediately so you can patch vulnerabilities at pace and with total confidence.
    • Our structured, 6-phase experience concludes with a prioritized, risk-rated technical report and a formal wash-up call, giving your team the exact evidence and reproduction steps needed to neutralize threats.

    Details

    Sold by
    Cognisys 
    Categories
    Security 
    Assessments 
    Legal & Compliance 
    Delivery method
    Deployed on AWS
    New

    Introducing multi-product solutions

    You can now purchase comprehensive solutions tailored to use cases and industries.

    Learn more 
    Explore multi-product solutions
    Multi-product solutions

    Features and programs

    Trust Center

    Trust Center
    Access real-time vendor security and compliance information through their Trust Center powered by Drata or Vanta. Review certifications and security standards before purchase.
    View Trust Center

    Pricing

    Custom pricing options

    Request private offer
    Pricing is based on your specific requirements and eligibility. To get a custom quote for your needs, request a private offer.

    How can we make this page better?

    Tell us how we can improve this page, or report an issue with this product.
    Tell us how we can improve this page, or report an issue with this product.

    Legal

    Content disclaimer

    Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

    Support

    Vendor support

    Our testing methodology uncovers vulnerabilites and misconfigurations that can lead to privilege escalation, data theft, and even the ability to gain a persistant foothold within the network.

    From start to finish, you'll be part of the penetration testing team. You'll have guidance and updates throughout the project and will be clear or any issues as soon as they arise - so you can act at pace and with confindence.

    Our testing experience includes:

    • Intro Call
    • Slack Channel Setup
    • Testing Phase
    • Results Delivery
    • Wash-up Call
    • Post-Test Support

    Email: pentestpm@cognisys.group