SECURITY
TESTING

Every organisation today faces a huge range of vulnerabilities to hacking attacks, with every risk point demanding its own technical competences. While the complexity is significant, the bottom line is simple: everything you have in place needs to be secure – and stay secure. Mobius will help you achieve this.

Our offering is genuinely holistic, blending vulnerability scanning and social engineering with hands-on penetration testing that doesn’t stop after a successful attack vector has been identified. This allows for your environments’ security configuration and foundational processes to be pushed to the limit and subsequently inoculated for a vast array of real-world attack methodologies.

Crucially, we identify not just the specific issue, but the root cause in your organisation. The advantage is that you will have the ability to address all your challenges from the ground up – and our reports facilitate remediation by providing clear guidance to your tech teams as well as recommendations to management concerning the broader issues. Whatever the challenge, there is a Mobius expert to address it.

THE MOBIUS ADVANTAGE

APPROACH

  • Holistically determine problem as well as root cause
  • Work with you to determine scope of requirements
  • Customise attacks where needed
  • Black box, grey box, white box methodologies
  • Once-off or regular assessment (latter recommended)

RESULTS

  • Identification of weak points in system and organisation
  • Detailed remediation report
  • Direct access to other Mobius specialists for resolution

EXPERTISE

  • Internal network assessments
  • External network assessments
  • Social engineering and phishing campaigns
  • Web application assessments
  • Mobile application assessments
  • Post-exploitation simulation
  • Live hacking demos
  • Vulnerability scanning
  • Red teaming
  • OSCP (Offensive Security Certified Professional)
  • OWASP (Open Web Application Security Project)
Security Testing Approach

PROJECTS

IMPROVE YOUR ORGANISATION’S PREPAREDNESS FOR A CYBER SECURITY ATTACK

Cyber Security and Incident Response A multinational client in the financial services industry recently asked Mobius to conduct a Cyber Security incident response review and simulation exercise. The primary objective of the project was to help improve the organisation’s readiness to respond to a major Cyber Security incident. The project included the following: Development of […]

HOME NETWORK SECURITY TESTING

A client in the Consumer Services industry was forced to make extensive use of remote working from home as a result of the COVID-19 lockdown. Their concern was that the home networks and computers used by employees were not secure, and if breached could result in various risks such as disclosure of sensitive data. The […]

SECURITY TESTING PROJECT IN SOUTH AMERICA

A multinational client approached Mobius with the requirement of running two internal penetration tests and two vulnerability scans at two remote offices simultaneously. The client, however, did not have the budget for an onsite analyst at both locations, their budget allowed for only one onsite analyst at one location.  As an organisation, Mobius always endeavours […]

ARTICLES

INTRODUCING AMANDA HECHTER, SENIOR MANAGING CONSULTANT

        Technology consulting brings a new level of understanding to the implementation of information technology and benefits it can have for businesses; and Senior Managing Consultant at Mobius Consulting, Amanda Hechter is one such driver of the service line.   As part of the EXCO team and a service line leader, Amanda plays […]

XSS TO SHELL

ZERO-DAY ADVENTURES – UNKNOWN UNTIL WE FOUND THEM For the astute among you, you’ll notice that the chaining of these types of exploits has been seen/used often enough, but the implications thereof are often overlooked. In this write-up we delve a little deeper into a real life example of how we uncovered three zero-days in […]

INTRODUCING RAYMOND DU PLESSES, SENIOR MANAGING CONSULTANT

  BACKGROUND   Raymond du Plessis is based in Mobius’ Johannesburg office. He began his studies at the University of South Africa (UNISA) and he has gone on to complete vocational studies through professional bodies like ISACA and ISC. Raymond believes that continual education, and more importantly the knowledge that you gain from it, forms […]