Intranet Penetration Test

Our Intranet Penetration Test simulates an insider threat or post-compromise scenario. Testing follows PTES, OSSTMM v3, and MITRE ATT&CK framework mapping.

Testing Areas

Network Infrastructure

• Network segmentation and VLAN security
• LLMNR/NBT-NS/mDNS poisoning and relay attacks
• ARP spoofing, DHCP attacks, IPv6-based attacks
• Switch/router security

Active Directory Security

• Kerberoasting and AS-REP Roasting
• NTLM relay attacks (PetitPotam, PrinterBug)
• AD CS (Certificate Services) abuse
• Constrained/unconstrained delegation attacks
• BloodHound-based attack path analysis
• Domain privilege escalation

Hybrid Cloud (Azure/Entra ID)

• Azure AD Connect security assessment
• Entra ID privilege escalation
• Microsoft 365 security review

Deliverables

• Technical report with CVSS v4.0 and MITRE ATT&CK mapping
• Active Directory attack path visualization
• Zero Trust architecture recommendations
• Free retest within 30 days

Meets requirements under PCI DSS v4.0, NIS2, ISO 27001, and DORA.

Duration: 5-10 days | Price: Based on scope — contact us