Realistic, non-intrusive tests to assess cyber preparedness. This includes social engineering, phishing, physical intrusion attempts, and simulated threats to evaluate incident response, awareness, and procedural efficiency — all without disrupting operations.
Service Description:
This one-day resilience test allows for the observation of behaviors, reflexes, and security mechanisms activated by the organization when facing simulated threats, under near-real conditions. The goal is to strengthen preparedness without disrupting business operations.
Social Engineering
✔ IT support-style phone calls to obtain access or sensitive information (using credible pretexts)
✔ Physical visit by an actor posing as a technician or delivery person (testing reception vigilance)
✔ Tailgating test: attempting to enter premises by following others through secured doors
Simulated Digital Tests
✔ Customized phishing campaign (tailored to the company’s field or internal projects)
✔ Non-active malicious attachments (harmless files that track clicks or openings)
✔ Link to a simulated login portal (captures fake credentials to test user caution)
Simple Network Tests (Non-Intrusive)
✔ Wi-Fi network scan: detection of unsecured or personal networks used on-site
✔ Evaluation of USB or personal device use (Bring Your Own Device policy)
✔ Website scan: identification of technical vulnerabilities
Awareness Testing in Real Conditions
✔ Simulated emergency email (CEO fraud + urgent attachment) to test user reflexes
✔ Simulated data loss incident: request for backup access
✔ Internal test "ransomware" message (non-functional) displayed on selected workstations to observe reactions
Procedure and Reflex Testing
✔ Triggering a fake alert to see if staff know who to notify
✔ Verification of an incident response plan (and staff understanding of it)
✔ Simulation of IT system access control: badge, code, password policy
✔ Identification of human and technical vulnerabilities
✔ Immediate awareness of cyber risks
✔ Non-intrusive testing with no impact on data or systems
✔ Solid foundation for correcting vulnerabilities and improving security
To get started, simply send us an email with the following details: