Hardening
Protect computer systems and the data they contain from potencial threats, both internal and external. This is achieved by configuring and optimizing systems and applications to minimize the attack surface and limit vulnerabilities.
Benefits
Removal of unnecessary or unused software
Encryption of sensitive data
Application of security updates
Configuration of firewalls and other network security measures
Requirements
Server access (if on a private network, access via VPN)
Administrator user
Acceso SSH (por Linux)
RDP Access (for windows)
Operating system and version
Validation of false positives by the client
Deliverables:
A report that includes the level achieved, a general summary, findings classified by category, and their description. To do this, tools such as CIS-CAT PRO are used for evaluation, Nessus, OpenVAS, or QualysGuard for configuration analysis, Nmap and similar tools for vulnerability detection, as well as RiskMatrix of FAIR for risk analysis.
Success story
IEEAGS: We managed to strengthen server and application security by eliminating critical vulnerabilities. This included securing configurations, implementing strict access controls, and improving protection against external threats. Thanks to these measures, the company now has a more secure environment, preventing future crashes and hacks on its web systems.
