GLOBAL EVOLUTION - SECURITY - VULNERABILITY RESEARCH GROUP

General Information - Concepts, Contact, Penetrationtests & Policy
Penetrationtests & Team ... Our Team will work out a individual Security-Test an Penetration-Test solution for your requirements. Our Philosophy is not to test with the "usual" Scanning-Applications, we just use them as a addition to our special manual Penetration-Testing. Our international Team with a long-standing expert knowledge will be glad to audit your software and appliance solution as well as every other part of your network. "Our Goal is your security ...!" Vendor Notification, Secure Time-Line & Disclosure Policy ... The different authors, exploiter, analysts, researcher & writer are a part of the european "Vulnerability-Lab". The Vulnerability-Lab Team protects famous software, services, applications on multiple platforms & informs the vendor on a secure way. The community/researchers follow a secure & special formed disclosure policy for publications of vulnerabilities/advisories on the internet. Vulnerability Lab: [Vulnerability Disclosure Policy]
White - Penetration Tests For an external White (White) penetration test data (source code, Information & Process events) are available. This information inlcudes for example the version of software, information services (SSH, FTP, IMAP, TELNET) or the source code of an application. In this test procedure, our employees do there best to provide detailed results and possible solutions. - Increase the vulnerability detection rate - Communication with developers and admin - Provide better work arounds or solutions	Black - Penetration Tests For an external Black (Black) penetration test, no data (source code, Information & Process events) are available. Our team needs to use other methods to gain information that can be used to make a good penetrationtest. In this test procedure, our employees are working from the perspective of real hackers/crackers. - Real attack conditions - Versatile Insights & Documentation - Non-Disclosure of their projects & source
Simulation (Re- & Overview) Planning (Resources & Equip.) Testing (Simulation of Tests) *Execution (Practical Phase)*	Reconaissance (Information Gathering) Enumeration (Attack Vectors) Exploitation (Exploiting Vulnerabilities) *Documentation (Evaluation & Logging)*
Identification Process of Software Vulnerabilities - Example Mapping