SentryArk – Information Security, Resiliency, Incident Response Services

RED TEAM SIMULATIONS

Social Engineering Assessment

Improve Cyber Awareness through People Hacking

Psychological manipulation is a common approach used by criminals to trick people into performing adverse actions and/or divulging confidential information. By creating emails and web pages that imitate those of known organizations and contacts, fraudsters aim to trick individuals into clicking dangerous links, opening malicious attachments, and sharing personal details.

Social Engineering Assessments help organizations understand the real-world threats to their business from the view of an attacker. Social Engineers attempt to gain access to protected information by exploiting unsuspecting staff members. These assessments help identify the potential holes in the “human element” to prevent information breaches and to strengthen the company’s security and compliance posture.

Read Datasheet

Social Engineering Assessment

Phishing Assessments

Phishing engagements go far beyond the automated tools found in many comparison services, providing highly targeted, sophisticated scenarios for each client. Using research on both the client organization and its employees, our security experts create sophisticated campaigns which ensure the best assessment of user education.

Vishing (Voice Call) Assessments

Vishing attacks utilize voice phone calls to similarly coax a user into performing unauthorized access, such as providing sensitive information or downloading an untrusted file. While these attacks are less common in the wild, vishing can be more effective when the attacker can establish an immediate, personal connection with the target users.

Internal Assessments

While less well-known than email or phone social engineering, SentryArk internal assessments utilize specialized security professionals to perform engagements in person. Specific techniques include Attacking the area with infected USB drives, tailgating employees through locked doors, and creating fake company badges to gain access to sensitive areas.

Assessment Scope

Social Engineering Assessments are broken down into either black box or white box methods. These style of assessment approaches are designed to give clients two different options for level of effort.

Black Box

In a black box style assessment, the social engineer begins the assessment with no prior information from the client, in order to see what types of intelligence (OSINT) they can find online. For these campaigns, the social engineer will gather E-mail addresses, phone numbers and information about the physical security controls to develop custom attack vectors.

Benefits of black box assessments:

More realistic – Sentryark social engineers see what they can find without guidance of client
Best method to simulate outside threats

White Box

During white box assessments the client provides the targets they wish to be tested, such as: phone numbers (Vishing), E-mail addresses (Phishing), and locations (Physical).

Benefits of white box assessments:

Client controls what information and which employees they want assessed
Best method to simulate insider threats

GAP ANALYSIS

Targeted Assessments for Mature Security Teams

Red team simulations go beyond standard penetration testing by providing holistic simulation of advanced threat actors and exercising your defensive capabilities at all levels. Red team activities use adversary Tactics, Techniques, and Procedures (TTPs) to provide a realistic assessment of the true risk posed by an attack by advanced threats.

Your incident responders and defensive staff will be able to use their processes, defensive technology and staff training to attempt to identify and eradicate an active breach scenario, with the goal of identifying flaws and closing those gaps to ensure your defenses are running at optimal performance. Activities will include advanced network exploitation and escalation TTPs, social engineering, defense evasion, war gaming and focus on completion of specific impact and defensive training objectives.

Read Datasheet

Execution Phases

GOAL FOCUSED

Each Red Team simulation targets a series of specific ‘Flags’ – critical business assets such as domain controllers, proprietary data, or credit card data. These Flags are determined on a per client basis to create a customized engagement and distinctively defined scope for the duration of the project. We understand that your security concerns are distinct to your organizational processes and industry. A red team engagement – or any security assessment for that matter – should always take that into consideration.

CUSTOM SCENARIOS FOR UNIQUE THREATS

Red Team simulations include custom scenarios that simulate real-world tactics an external attacker might use to gain a foothold within a network. These scenarios identify risks unique to a single scenario or environment, such as a malicious insider, a compromised mobile device, malicious hardware installation, or other unique threats.

BENEFITS OF ATTACK SIMULATION

Validate your response to attack

Exposing a larger attack surface which usually includes many assets haven’t been covered during ordinary penetration testing.

Identify and classify security risks

Finding out if your employees are aware enough against main security threats.

Uncover little-known weaknesses

By mirroring the tactics, techniques and procedures (TTPs) used by criminals, Red Teaming can help identify little-known and complex vulnerabilities that attackers might seek to exploit.

Enhance Cyber Security Team

Finding out how will your SOC team respond against a real threat.

Address vulnerabilities

Identifying the misconfiguration of your security appliances as well as the endpoint security software.

Test your security against real-world attacks,
Without the risks of negative headlines

GET THE HELP YOU NEED