Category: Network

Finding Vulnerabilities from a Pen Test is a GOOD Thing!

In cybersecurity, receiving a clean penetration testing report might seem like the ultimate goal. After all, who wouldn’t want to hear that their network is secure, with no issues in sight? However, the truth is that finding vulnerabilities during a penetration test is…

The Importance of Internal Network Penetration Testing

Welcome to today’s briefing on a crucial topic in the realm of cybersecurity: internal network penetration testing. Now, I know that the term might sound a bit intimidating but fear not. By the end of this discussion, you’ll have a solid understanding of what it…

Why Penetration Test Costs Might Go Up Each Year

As companies tackle the ever-evolving landscape of cybersecurity, they regularly budget for penetration tests to protect their digital assets. But many are left scratching their heads when they see the cost for these tests creeping up each year, even when it seems like the scope…

The Essential Step: IP Allow-Listing for Efficient Penetration Testing

In the critical realm of cybersecurity, efficiency isn’t just valuable—it’s imperative. The phrase “time is money” captures a universal truth, particularly relevant to the realm of penetration testing. As organizations endeavor to navigate the complexities of securing their digital assets, the role of penetration testers…

Scheduling Your Penetration Test

You’re ready to schedule your penetration test, but aren’t sure when that should be. Should it be at the beginning of the year or the end of the year? Are there industry standards that apply to scheduling your test? In this video, we take a…

How Can I Tell a Real Pen Test from a Fake?

There are a lot of companies selling penetration tests (pen tests), but how do you know if what you are getting is a real pen test? When it’s something that’s less tangible than, say, getting an oil change, it can be hard to determine if…

The Importance of the Log4j Vulnerability

The Log4j vulnerability has been in the news since its discovery in November 2021. At MainNerve, the most common question asked is, “Does MainNerve test for the Log4j vulnerability?” The answer is yes, but what is this vulnerability, and why does it matter so much? …

What Are Rules of Engagement in Pen Testing?

If you think the Rules of Engagement sound like a war movie, you’re not alone. In the penetration testing world, it’s more about cyber warfare, indirectly. What is it? Proactive penetration testing can help combat would-be attackers by identifying vulnerabilities before they do. The Rules…

Can I do the Pen Test Myself?

Conducting pen tests might seem easy enough with the right tools and some YouTube videos. Sure, you can do the test yourself, but here’s why you shouldn’t. Pen test certifications Pen testers should have certifications that show they know what they are doing. These certifications…

White Box, Gray Box, and Black Box Testing, Oh My

In speaking with many of our clients, MainNerve’s staff has fielded countless questions about the type of penetration testing and approach that will be used, such as black box testing. Often, clients are uncertain of what they need for their business. We work with them…