The company developed a corporate network to store user and corporate data. The network was also developed as a communication channel for the employees. The company contacted a1qa to ensure the security of the product. Major points were to secure corporate data and protect internal infrastructure from unauthorized access.
In the course of the project, the testing was divided into two parts. The passive scanning was performed during business hours, while the active testing phase was organized outside the working hours.
DoS attacks were run during limited and preliminary agreed hours, remote access to the network was provided via the VPN connection.
The QA team was scaled up in order to accelerate the testing procedures. Scripts development for the automation of manual checks was implemented to increase test efficiency.
At the end of the testing period, the specialists created detailed defect reports and elaborated security recommendations.
The project was completed successfully and the client was willing to prolong cooperation.
Incorrectly set-up system:
The production environment was unavailable during business hours:
Non-defined system vulnerabilities: