RentSync wanted to conduct a complete black-box organizational penetration testing for vulnerability assessment to ensure data confidentiality and integrity on their platform. They also looked to maintain compliance with SOC2, maintain business continuity, and cost effective risk mitigation solutions.
RentSync wanted to identify vulnerabilities within the existing system and remediate them with the help of penetration testing methodology. Their applications have been deployed on hybrid and multi cloud environments on Amazon Web Services (AWS) and Google Cloud Platforms. Given their industry, they also needed to maintain business continuity and compliance requirements according to SOC2 and other standards for improved innovation, customer trust, and smooth business operations.
Solution & Outcome
Following the best practices and methodologies, Successive performs a full black-box organizational pentest to identify vulnerabilities and share complete remediation reports comprising technical reports and POCs. With the help of experienced security engineers, we performed simulated attacks pointing out authentication bypass and anomalies in the system’s configuration. We further established standards and compliance, including SOC2, OWASP, and SANS, ensuring they run their business securely and confidently.
BurpSuite Professional, Nessus, and Nmap, AWS; EC2 instances, Load Balancers – Network & Application, Databases, WAF, VPC, CloudFront & CloudFlare for Website hosting, GCP; Virtual Machines, Load Balancer, & Databases for platform apps and services.