Approach: The tester has limited insider knowledge, such as user credentials or basic system information.

Ideal for: Businesses looking for a realistic security assessment from the perspective of a restricted internal user.

​​​

What’s Included?

​

Simulates attacks in a Windows environment, including a Windows intern scenario to assess insider threats

​

Tests internal (and if wished external) security, evaluating privilege escalation risks

​

Utilizes a dedicated Kali Linux instance for advanced penetration testing techniques

​

Mimics real-world attack paths, assessing how an attacker could move within the network

​

Identifies misconfigurations and weaknesses specific to Windows infrastructures

Approach: The tester has no prior knowledge of the target system.

Ideal for: Companies that want to test their security from an external attacker’s perspective.

​

What’s Included?

​

No prior access to system information – simulates a real-world external attack

​

Analyzes publicly available data to identify potential entry points

​

Uses open-source and professional security tools, including Kali Linux

​

Simulates real-world cyber threats to test infrastructure resilience

Ideal for assessing external defenses against unknown attack vectors

Approach: The tester has full access to system documentation, source code, or administrative credentials.

Ideal for: Organizations that need a comprehensive security evaluation with maximum transparency.

​

What’s Included?

​

Full system access for in-depth security evaluation

​

Early detection of vulnerabilities through complete transparency

Comprehensive analysis of internal IT infrastructure and

configurations

​

Controlled attack simulations to assess security weaknesses

​

Simulates a full-scale corporate Windows environment to test insider threats and misconfigurations

​

Provides detailed risk mitigation recommendations for enhanced security