News

  • We've done it!
  • Coalfire Labs President Rick Dakin was awarded the FBI's Director's Leadership Award for contributions in combating crime.

Events

  • Coalfire Labs has launched!
  • We've worked long and hard designing our new site. Take a look around and you'll find new services and solutions that Coalfire's digital forensics division has to offer.

Research

  • Keep checking back.
  • As Coalfire Labs develops, we'll have further updates as well as more services, news and research to provide directly to you.

Tools

Penetration Testing

Annual independent penetration testing is critical to maintaining a strong IT security posture. It is the most efficient and effective method to identify crippling security risks and exposures. Many regulations now require organizations verify securities with penetration tests.

Coalfire’s penetration tests investigate all aspects of potential security hacks so you know where your vulnerabilities lie and how to resolve them.

Digital Footprint

With only your organization’s name, we collect public information that may identify sensitive IT details. This provides perspective on what information hackers can dig up, the 1st step of a coordinated attack.

Penetration Test

Coalfire’s comprehensive penetration test simulates malicious attacks to determine risks and assess overall security posture. Test activities include, among others:
  • Network Penetration by exploiting vulnerabilities
  • Injection to input controls
  • Buffer overflow attacks
  • Denial of Service Attacks (we will identify attack potential, not launch)
  • Cross Site Scripting
  • Authentication and Authorization attacks
  • Social Engineering

All found vulnerabilities are ranked according to severity and risk. Each vulnerability receives an impact statement with specific remediation advice. After testing, we continue to work with management and technical teams to ensure knowledge transfer and successful remediation.

Annual penetration testing provides real world assurance that your configuration and vulnerability management controls can protect valuable information and withstand a real cyber attack.