CyberShield

Home
About
Services

Security Testing

Penetration Test

Vulnerability Assessment

Red Teaming Exercise

Source Code Review

Security Forensic

Cybersecurity Forensic

Cybersecurity Traffic Analysis

Data Leakage Investigation

Security Audit

Baseline Audit

Smart Contract Audit

Web3 Audit

IT Security Audit

Security Consulting

Risk Assessment

Architecture Security Design Review

Social Engineering

Email Phishing Drill

Performance Test

Performance Test
Solutions

Cloud & Endpoint Protection

Endpoint Detection & Response

Web Application Firewall

Anti-DDoS Solution

Data Leakage Detection & Protection

Data Leakage Detection & Protection

Managed Detection & Response

Managed Detection & Response
Resources

Home
About
Services +

Security Testing

Penetration Test

Vulnerability Assessment

Red Teaming Exercise

Source Code Review

Security Forensic

Cybersecurity Forensic

Cybersecurity Traffic Analysis

Data Leakage Investigation

Security Audit

Baseline Audit

Smart Contract Audit

Web3 Audit

IT Security Audit

Security Consulting

Risk Assessment

Architecture Security Design Review

Social Engineering

Email Phishing Drill

Performance Test

Performance Test
Solutions +

Cloud & Endpoint Protection

Endpoint Detection & Response

Web Application Firewall

Anti-DDoS Solution

Data Leakage Detection & Protection

Data Leakage Detection & Protection

Managed Detection & Response

Managed Detection & Response
Resources

Security Testing

Penetration Test

Penetration testing (also called as “Pen-Test”), is a type of simulated ethical cyberattack on IT assets such as computer system, server, network, API, or application etc. to discover and exploit security vulnerabilities before hackers find and utilize these vulnerabilities to launch malicious attacks.

Types of Pen-Tests

Black Box

Pen-Test without prior
knowledge or granted
access to the target assets.

Grey Box

Pen-Test with limited
knowledge or limited
access to the target assets.

White Box

Pen-Test with full
knowledge and access to
target IT assets.

Penetration Test Targets

Web Application

Mobile Application

Desktop Application

Wechat Mini Program

Network (Internal & External)

Wireless SSID / WiFi

Message Queue

API, FIX Adaptor etc.

Our Strength

Attacker's mindset, defender's insight - we simulate real cyberattacks to exploit security vulnerabilities

We take compliance into consideration in pen-test such as PDPA & HIPAA.

Business logic security loophole exploitation - we evaluate business logic security loopholes and risk impact.

Full support for remediation - we help stakeholders to fully understand detected target assets' risk exposure and provide tech support to remediate vulnerabilities.

Why Us

Strong Track Record

Certified Ethical Pen-Testers

More than 8 years' experience

Rich industry experience (financial, banking, airport, fin-tech, blockchain, healthcare etc.)

Standard Adherence

At Cyber Shield, our Penetration testing (Pen-Test) service adheres to these standards

PTES

IS027001

CIS

CWE

SCAP

OWASP

NIST