The scope of TLPT security testing includes a thorough evaluation of an organisation’s resilience to real-world cyber threats, addressing both technical and organisational aspects.
The tests include:
IT Infrastructure Analysis: Network scanning, identification of active hosts, open ports, and vulnerability detection using tools such as Nmap, Nessus, or OpenVAS.
Attack Simulation: Execution of attack scenarios based on Threat Intelligence data, using exploits (e.g. Metasploit) and techniques in alignment with the MITRE ATT&CK framework, simulating activities such as lateral movement (vertical and horizontal), privilege escalation, or data exfiltration.
Operational Process Testing: Evaluation of the effectiveness of incident response mechanisms, log monitoring, and real-time event analysis using SIEM, IDS/IPS, and EDR systems.
Assessing Staff Awareness: Conducting socio-technical tests, such as simulated phishing, smishing, and vishing attacks, to assess staff preparedness for cyber threats.
With its extensive scope, TLPT testing delivers a thorough analysis of an organisation’s security posture, pinpointing vulnerabilities with precision. It provides detailed, actionable recommendations to fortify your security infrastructure and better protect against potential threats.