Wireless testing refers to the assessment of the configuration and deployment of wireless networks and devices in order to ensure that only the intended end users may utilise the network and associated services.
Testing uses a combination of wireless signal scanning of access points and the configuration reviews of wireless controllers to ensure the wireless networks are correctly configured, preventing the access of unauthorised users. Wireless Security testing is bespoke depending on the goal or outcome you wish to achieve, therefore there is no off-the-shelf price for a wireless penetration test.
For each project, we will technically scope your requirements and establish the time needed to complete the work. We will then provide a detailed proposal and breakdown of costs and options
Our team possess several of years valuable experience conducting a wider range of government and commercial tests and always aims to go the extra mile for our customers.
The Strategies and Tools of Wireless Security Testing
Our wireless penetration testers carry out a range of tests against the wireless local area network (WLAN) and wireless access points (WAP).
The goal of wireless penetration testing is four-fold:
The Wireless testing methodology comprised of five phases. Our professional team perform this methodology in a professional manner so that security loopholes can be discovered and rectified by applying technical security measures to avoid any data breaches.
The Information Gathering
The information-gathering phase of a wireless network security test consists of network enumeration, identifying the SSIDs (network names) in scope and in range of your Wi-Fi network.
Threat Modeling
With the information collected during Information Gathering, security testing transitions to threat modelling where assets are identified and categorized into threat categories.
Vulnerability Analysis
The vulnerability analysis step in a wireless penetration test involves the review, documenting and analysis of vulnerabilities discovered as a result of information gathering and threat modelling.
Exploitation
The Exploitation phase of a wireless penetration test involves establishing access to the wireless network, and potentially your internal network, through the bypassing of security controls and exploitation of vulnerabilities in order to determine their real-world risk
Reporting
The reporting step is intended to provide actionable results to the project stakeholders. Red Team will compile, document and risk rate findings and generate a clear, actionable report, complete with evidence, for project stakeholders.
Benefits of Wireless Security Testing
Wireless testing gives assurance on the security of your internal wireless networks, devices and users as below:
Access – Ensure your wireless network cannot be accessed or compromised from outside your premises.
Separation – Ensure guest or public hotspot users cannot access non-intended internal networks.
Configuration – Ensure your access points, controllers and devices are securely configured.
Deployment – Ensure that only authorized access points are deployed and no rogue access points have been installed.
Deliverables
We deliver a complete penetration testing or vulnerability assessment report for infrastructure testing, which covers the following:
Executive management summary – Non- technical overview of issues for management board level
Detailed technical findings – A complete list of all issues identified during the test.
Affected hosts – A list of all affected wireless hosts/SSIDs/configuration settings discovered during the penetration test.
Risk level – Impact, likelihood and overall risk ratings are listed clearly and concisely for each issue.
Examples – Output or screenshots to demonstrate the issue.
Recommendations – Recommendations of how to remediate the issues are also given.
United Kingdom
Australia
Saudi Arabia
Bahrain
Qatar
UAE
Ghana
PCI DSS
Cyber Security Framework
Data Privacy
ISO 27001
ASD Essential Eight
Vulnerability Assessment
Penetration Testing
GDPR
NIST
© All rights reserved@GRC360