Infrastructure Penetration Testing helps Identify your weaknesses

The Hedgehog Infrastructure Penetration Testing service is a CREST approved, regulated, full-scope, multi-layered attack simulation, orchestrated from the perspective of a malicious threat actor, designed to measure how prepared your infrastructure, applications, people, processes and technologies can defend and withstand an attack from a real-life adversary, while uncovering potential risks and security vulnerabilities.

Penetration Testing is important for organisations of all sizes and the traditional style of penetration testing has done the job for many years. Now, however, a well structured and scoped penetration test needs to me more than a simple point in time test.

Infrastructure Penetration Testing

We offer consultant-led Infrastructure Penetration Testing service, to provide a thorough and independent examination of your organisations infrastructure and systems to identify vulnerabilities and weakness.

There are two components to delivering our Penetration Testing service, Internal and External assessments. It is commonplace to combine these into a single Penetration Test that covers both the internal and external components of the network.


  • Internal Penetration Test

    Our Internal Infrastructure Penetration Testing service is performed by a qualified Infrastructure security consultant who is onsite within your corporate network.

    This type of Internal Penetration Testing looks for security issues and vulnerabilities on the inside of your corporate network with the same physical access as a member of staff or other types of employee who has access to the building.

    This Infrastructure Penetration Testing Assessment provides a very comprehensive view of the configuration of your corporate network devices and servers from a security viewpoint of an insider, connected to your network.

  • External Penetration Test

    Our External Infrastructure Penetration Testing service is performed by a qualified Infrastructure security consultant who is onsite within your corporate network.

    This type of assessment is concerned with assessing the external, Internet-facing infrastructure of your corporate network. This could be your Firewall, VPN endpoints, Web Servers or Mail Servers etc.

    The level of access to these resources would be the same as an external hacker trying to break into your corporate environment so this assessment provides you with a real risk indicator as to your external security posture.

Penetration Testing can be performed internally within your corporate network or externally over the Internet

Remote Infrastructure Penetration Testing

Traditionally, Infrastructure Penetration Tests have been conducted onsite where a our consultant would visit your office and physically connect to the network infrastructure to perform the assessment. With the issues faced around the Coronavirus situation, we have released our client portal, a technology-led alternative to having a consultant visit site.

We are offering a Remote Infrastructure Penetration Test where the whole engagement is performed without the need to visit the customer site. You can either download a Virtual Machine image that can be installed within the corporate network or be shipped a standalone network appliance.

Both solutions create a secure channel to the Hedgehog Security Operations Centre where the assigned consultant can then command the image or appliance in the same way as they would if they had their laptop on site.

All data collected during the test is held securely at our ISO27001 Security Operations Centre allowing the consultant to perform the assessment and upload the results to the client portal.

Explore the Demo Portal

Use the link in the top right to log into the portal. The credentials are:

Password: Demo-Password-2021


Hedgehog Security places great emphasis on the quality, reliability, and security of the services it offers. We are fully regulated by CREST, the Council for Regitered Ethical Security Testers and are authorised to deliver Cyber Security Consulting along with Penetration Testing, Vulnerability Scanning and IT Health Checks.

Cyber Security Consulting

Get in Touch

Kindly fill the form and we will get back to you.

Contact us if you are experiencing a Cyber IncidentHaving a Cyber Incident?