Penetration tests are one of the tests used to reduce the risks by seeing the current risks of many institutions. With penetration tests, security vulnerabilities are detected by applying hacking attempts against the assets in the corporate network infrastructure. However, in many cases, it is seen that attackers who cannot successfully hack, perform DDoS (Distributed Denial of Service Attack) attacks to damage the corporate network. With DDoS tests, it is tried to determine how long the systems can survive as a result of a denial of service attack on the corporate network. With this test type, the reaction of the corporate systems and the response times of the services in a possible denial of service attack are measured. These denial-of-service attacks, which will be carried out in a controlled manner, are carried out at both the application layer (L7) and the network layer (L4).
At this stage, optionally, the following DoS types are tested.
- SYN Flood
- HTTP GET/POST Flood