Penetration Testing · Internal

Internal Penetration Testing

Insider-threat and post-breach assessment of your internal network.

What is an Internal Penetration Test?

An internal penetration test evaluates the security of IT infrastructure accessible exclusively from within your corporate environment. This assessment targets internal servers, databases, employee endpoints, and networking appliances. By operating from the perspective of an insider threat or an attacker who has already bypassed perimeter controls, this test demonstrates the potential lateral movement and impact within your network.

What We Test

▸Vulnerability scanning, service enumeration and manual exploitation
▸Active Directory security testing
▸Shared resource enumeration
▸Password and pass-the-hash attacks
▸Pivoting attacks
▸Ticket attacks, such as silver tickets and golden tickets
▸Man-in-the-middle attacks (LLMNR/NBT-NS poisoning, SMB relaying, LDAP relaying, IPv6 relaying, etc.)
▸Password hash cracking
▸Kerberoasting attacks
▸Other testing depending on specific customer content and footprint
▸Free remediation re-test included

Frequently Asked Questions

Schedule an Assessment

Internal Penetration Testing

What is an Internal Penetration Test?

What We Test

Frequently Asked Questions

If you are remote, how do you access our internal network?

Will our employees notice you are testing?

How long does this take?