// NETWORK / SYSTEM PENETRATION TESTING
We audit your internet-facing infrastructure through an attacker’s eyes.
Discovery of potential security vulnerabilities across all your internet-reachable resources, using methodologies aligned with OWASP and TS 13638 standards.
// WHY KRITERA
Penetration tester discipline
Not just automated scans — manual exploitation, chained vulnerability discovery and true adversary simulation.
01
OSCP / CEH Certified Team
Entire pentest team holds OSCP/CEH or equivalent. Actively in the field with 50+ tests per year.
02
TS 13638 Standard
Penetration test methodology compliant with Turkish Standards (TSE) — officially recognized for defense industry and public sector projects.
03
Retest Included
After critical findings from the first test are fixed, retest is performed free of charge. Closure is confirmed.
// METHODOLOGY
Six-phase testing & reporting
WEEK 1
Scoping
IP ranges to test, systems in scope, whether social engineering is included, blackbox/greybox/whitebox preference, legal permissions and test window.
WEEK 1-2
Information Gathering
Open source intelligence (OSINT), DNS discovery, port scanning (Nmap), service fingerprinting, technology stack detection. Attack surface map.
WEEK 2-3
Vulnerability Detection & Exploitation
Automated scanning (Nessus, Nuclei) + manual exploitation attempts. After discovery, real impact is proven via controlled exploit.
WEEK 3
Privilege Escalation
After initial foothold, internal discovery, credential harvesting, lateral movement. Goal: show how deep an adversary could go.
WEEK 4
Reporting
Executive summary (for the CISO, with business impact), detailed technical report (CVSS score, evidence screenshots, remediation), risk map.
WEEK 8-12
Retest
After customer remediations are made, we retest the same findings. Closure confirmation report included.
// PITFALLS
Most common mistakes in penetration testing
Five pitfalls overlooked at contract time that cause damage later:
Automated-scan-only test
Just Nessus/Acunetix output ≠ real pentest. Solution: 70% manual exploitation mandate.
Out-of-scope system neglected
Excluded staging/test environment becomes leak source. Solution: At least quick scan across the full perimeter.
Finding list, no solution
100-page report, unclear where to start. Solution: CVSS + business impact + strong prioritization.
Paid retest
Charging for retest = reduces remediation courage. Solution: Retest included in package price.
Findings leak
Test team’s notes/tool logs end up in third-party hands. Solution: NDA + encrypted channels + 30-day destruction.
// CONTACT
Schedule a scoping call for your infrastructure
Free scoping call before the test — IP range, target systems, test window, reporting expectations.