You guys are like the "A" Team. You helicopter in, you get rid of the bad guys, you take care of business."

Redspin Customer

Overview Penetration Testing (Infrastructure)

External Internal

Wireless

Policies and Controls Testing Application Penetration Testing Social Engineering Enterprise Solution

Request more information

Call us at 1-800-721-9177

Chat (we're super friendly) Email us Read our blog

Wireless Infrastructure Penetration Testing

Redspin's Wireless Network Security Assessment utilizes a risk-based approach to manually identify critical infrastructure vulnerabilities that exist on all wireless infrastructure within scope. The primary goals of this assessment are to:

Provide management with an understanding of the level of risk from Internet-accessible services.

Provide recommendations and details to facilitate a cost-effective and targeted mitigation approach.

Create a basis for future decisions regarding information security strategy, requirements and resource allocation.

Why perform a Wireless Network Security Assessment?

To execute a real-world attack on critical infrastructure and understand the level of risk that exists at a single moment in time.
To gain assurance that a malicious attacker could not gain unauthorized access to wireless or connected wired resources.
To understand the level of risk for your organization compared to similar companies.

Scope

The wireless infrastructure will be evaluated for numerous common vulnerabilities, including:

Physical security of wireless access points
Wireless signal strength (heatmap)
Network naming convention
Signal strength and dispersion
Encryption algorithms such as WEP, WPA, LEAP, PEAP
Key / certificate change / rotation
Network architecture and security zones
De-authentication vulnerabilities
"Evil Twin" attacks
Traffic overload via flooding
Traffic replay / injection
Wireless card vulnerabilities.

Performing this scope on a regular basis will also help address specific regulatory requirements, such as FFIEC/GLBA, HIPAA/HITECH, NERC, and PCI DSS requirement 11.3.1.

Methodology

Wireless testing begins with limited knowledge and no credentials provided and is designed to simulate a real-world attack on your wireless infrastructure. While this practical exercise is not designed to test the effectiveness of each implemented control individually, you will learn what vulnerabilities exist and the overall information security risk the wireless infrastructure introduces to your IT environment. If desired, testing can also be performed with provided user credentials to associate to the wireless network and determine if access controls to connected networks are sufficient and systems located on the wireless network are hardened. Similar to Redspin's other infrastructure penetration services, the process will start with reconnaissance, moving to enumeration, vulnerability identification, and lastly validation to eliminate false positives.