No internet connection

Check your network settings

Penetration Test Report

Q1 2024 External & Internal Penetration Test

Auditor:Bishop Fox
Test Period:February 19 - March 1, 2024
Report Date:March 15, 2024
Classification:Public Summary
0
Critical
0
High
2
Medium
5
Low
12
Info

Executive Summary

Bishop Fox conducted a comprehensive penetration test of SentryNix's security platform infrastructure, applications, and APIs. The assessment included both external (black-box) and internal (gray-box) testing methodologies. The testing team consisted of 4 senior security consultants with extensive experience in application security, cloud security, and network penetration testing.

Strong Security Posture Confirmed

SentryNix demonstrates a strong security posture with well-implemented security controls. Zero critical or high-severity vulnerabilities were identified. The medium-severity findings relate to security hardening opportunities and defense-in-depth measures. All identified issues have been addressed by the SentryNix security team.

Test Scope

External web applications and APIs
Internal network infrastructure
Cloud infrastructure (AWS)
Authentication and authorization systems
Data encryption and key management
Container security (Docker, Kubernetes)

Testing Methodology

1
OWASP Top 10 testing methodology
2
Manual security code review
3
Automated vulnerability scanning
4
Social engineering assessment
5
Configuration review
6
Privilege escalation testing

Questions About This Report?

For more information or to request the full report (available under NDA), please contact our security team.

security@sentrynix.com