Goal Based Internal Network Penetration and Segmentation Test
title: “Goal-Based Internal Network Penetration and Segmentation Test”
Before the start of engagement Customers will deploy a virtual machine (vPTK) provided by Rapid7 to establish connectivity to your internal network. (vPTK placement to be discussed with your CA and Project Manager)
- Network Segmentation Testing / Testing of Segmentation Boundaries
- Package scope and boundary limits to be reviewed with your CA and Project manager upon onboarding.
- Rapid7 will report on services and ports exposed across boundaries.
- Network Penetration Test
- Testing will be goal based (your PM and CA will provide you the allocation of days of service) and may include:
- Attempt to gain direct or indirect access to segmented network areas.
- Attempt to gain elevated access within your environment.
- Attempt to gain access to your sensitive data.
- Testing to be conducted remotely & during Rapid7 standard business hours.
- Qualified personnel provided by Rapid7 will perform all work. Unless otherwise defined in the price quotation and SOW, Rapid7’s responsibilities are limited to the work defined by this SOW and attached quotation.
- Testing will be goal based (your PM and CA will provide you the allocation of days of service) and may include:
All work to be conducted remotely & during Rapid7 standard Business hours.