This type of testing involves both the Perimeter Test and on-site testing on the inside of the firewall. The goal is to identify and assess the vulnerabilities associated with the network servers, user workstations, and network infrastructure systems, as well as the gateway routers and firewall systems. Test procedures are similar to those used in Perimeter Testing, with the main difference being the number of systems to be tested.
Based on the overall findings, a report on the security flaws of networked hosts and devices, and recommendations for correcting them is provided. During the on-site period we provide assistance for correcting vulnerabilities discovered during the testing, which could include installing patches and hot fixes, hardening the operating system and application, or making configuration changes in cooperation with system administration personnel. Re-testing is performed as necessary.
The resulting Test Report will include similar information to what the Perimeter Test Report reflects, as well as the reports generated by the test tools used on-site. Internal Testing is somewhat more expensive than Perimeter Testing, both because it is more in-depth and it is conducted on-site, which may result in travel-related expenses.