PL EN

Safety

Scanning services (includes PCI ASV)

Our offer includes both external and internal scanning services. SC2labs is PCI ASV (Approved Scanning Vendor) accredited by PCI SSC to perform quarterly PCI ASV scans.

Audits consist of checking external facing, publicly available IT resources (IP addresses IPv4 and/or IPv6, networks, domains etc.) using over 150.000 non-invasive tests designed for various technologies, platforms and applications.

The aim of the network vulnerability scan is to detect deficiencies in the architecture and configuration of the analyzed system, which then could be used to penetrate the system components firewalls, servers to the internal network. Auditors will explain the scope and course of the scan, will present the most common errors and provide assistance in any non-compliances found.

Penetration Test

SC2labs offers professional penetration testing on any of the company’s IT infrastructure. Penetration tests are controlled attacks on the resources of the organization or its individual components. Pentests allow to see the actual level of information security – identification of risks, which may be targeted effectively hacked.

Depending on your needs we offer:

  • Penetration Testing
  • external (remote – from the Internet)
  • internal (on location)
  • Penetration Testing
  • black-box type – from the perspective of a zero-knowledge test systems
  • gray-box type – partial knowledge of the test system
  • white-box type – the full knowledge of the test system

A typical test scenario consists of the following steps:

  • Preliminary analysis of the test system / components
  • testing and vulnerability analysis
  • verification of vulnerability – controlled attacks
  • assess the effectiveness of risk
  • communicate the results of the tests (detailed report)

Tests are performed by auditors with several years of international experience – we are using industry proven methodologies and best practices like OWASP, and NIST guidelines 53-115 PCI DSS, PA-DSS, HIPAA, etc.

Wireless security audit (Wi-Fi)

SC2labs experts provide comprehensive assessment of wireless security Wi-Fi to check security in accordance with the requirements of PCI DSS, as well as the correct and safe segregation of client network of production. We use professional tools for the assessment and reporting of threats and vulnerabilities of wireless devices and networks.

Web Application Test

Service gives clear and in-depth answer how secure is your Web-Based portal or e-commerce application to allow your business growth in stable way. We use proven OWASP and NIST 53-115 methodologies to perform our audits that are executed by experienced and certified security auditors.

Our Security Assessment Service is individually fitted to type and character of your business, utilized technologies and identified threats related to your unique business.

We use industry proven methodologies and best practices like OWASP, OSSTMM and globally recognized standards like PCI DSS. These standards together with our in-depth experience in security area allow is to examine tested environment and provide clear business and technological recommendations of how to bring your Web Applications security to a higher level.