“Ambersail tailored the penetration testing to match our objectives, which is exactly what we needed. Alongside the testing, the support really helped. A fine service all round.”

CEO. Eiger Trading Advisors.


Is Wireless Penetration Testing For You?

Testing can satisfy a variety of business objectives.

Best practice. The best reason of all. A company decides to take control of Cyber Security and perform Penetration testing on its Wireless Networks as part of an overall security strategy. We are often contacted by companies such as retailers wanted to ensure customer guest  wireless networks cannot access main company networks.

Compliance. Penetration testing on networks and assets as part of regulatory requirements. Ensuring companies get compliant and avoid fines.

Recovery. Previously compromised or hacked companies securing and rebuilding networks after a security breach.

Commercial. Third party technology companies such as Service Providers need independent security verification of their services to allay security concerns from their clients.

Whatever the business reason, Wireless Penetration Testing has been widely regarded for some time as an important tool used to identify and remove serious security weaknesses from networks.

 

When You Undertake Wireless Penetration Testing You Can Expect:

  • Competitive pricing.
  • Help and advice at all stages.
  • Normally performed onsite at your business locations.
  • CREST Penetration Test team. Testing performed by experts.
  • Direct access to our expert test team. You can pick up the phone and talk to a real person.
  • Reports with clear findings and advice.

Contact us to get started.


Need To Know More On How We Do Things?

Wireless testing consists of three stages…

Find out more about Wireless Penetration Testing

Ambersail Wireless Penetration Testing Methodology

Discovery
We immediately start to explore the wireless network.
Forming a deep understanding of what needs to be tested. How the network functions. Physical and logical footprints.
Who should have access. How connections are made to company networks.

Assessment
Understanding the environment and its supporting technology allows us to shape and craft specific tests.
We combine this with the underlying network configuration to create a comprehensive set of tests.

Exploration
We now have a detailed understanding of the target wireless network. Under strict control, our tests are applied.
Results are carefully monitored.
This provides us with further intelligence and understanding of the network.
Understanding that can be used to create very specific tests that provide a deep and thorough assessment.

 


What Is A Wireless Penetration Test?

This takes place on a customer site, where the wireless equipment is located.  The test will locate weaknesses in the configuration of wireless technology that could enable unauthorised access to the network and associated data. Examples of weaknesses might include weak passwords, or poorly implemented cryptographic features.

As well as testing wireless equipment, wireless penetration testing can also include attempts to trick users into connecting to a rogue access point which has been set up deliberately by the tester. The victim user will then connect to the fake access point and from there, usernames and passwords can be collected by the tester.

But why conduct these tests in the first place? Wireless technology is a particular concern as it can be accessed from outside the physical building perimeter. This enables an attacker to compromise a network without actually being on the premises.

Wireless connections are local. This means connections are not from an outside Internet connection. As such, too much trust is placed on these connections. This trust can easily be exploited if the wireless network is not set up properly.

During testing, advice on how to avoid these kinds of things happening is also provided along with full recommendations.