Fields Associates

• Why Choose
  Fields
  • About Us
  • Global Services
  • Our Clients
  • Confidentiality
• Digital
  Forensics
  • • Electronic Discovery
    • Secure Data Erasure
    • Computer Forensics
    • Mobile Forensics
    • Data Recovery
    • Password Recovery
• Expert
  Witness
  • Our Experts
  • Cases Overview
  • Commercial Clients
  • Legal Clients
• Security
  • • Penetration Testing
    • Vulnerability Assessment
    • Managed Solutions
    • Monitoring Solutions
    • Introduction
    • Information Security
    • Security Policies & Procedures
    • Technical Security Audits
• Courses, Training
  & Archives
  • • Computer Forensics (1 Day)
    • Handling & Examining Digital Evidence (1 Day)
    • Computer Evidence & the Internet (2 Day)
    • Digital Evidence in Commercial Litigation (1 Day)
    • Overview
    • Computer Forensics (2 Days)
    • Computer Evidence & the Internet (1 Day)
    • Mobile Telephone Evidence (1 Day)
    • Nanotechnology and...
    • Say No to DIY Software
    • Choosing Pro Data...
    • Archive

Welcome

At Fields Associates, we specialise in the recovery of the digital “fingerprints” left by the routine use of computers. Even erased files can be recovered and examined, ensuring that you have all the evidence available to support your investigation.

Established in 1999, we have earned an impressive reputation in the detection, analysis and presentation of computer evidence in the broadest range of criminal activities. These include fraud, extortion, data theft, child pornography and Internet abuse.

Our clients include legal firms, international banks, blue chip companies, law enforcement and military organisations.

Black Box v/s White Box Testing

Remote Penetration testing (offsite)

Remote Penetration Testing is often referred to as ‘black box’ testing within the industry. The basic concept behind Remote Penetration testing or black box testing is based on limiting the information the ethical hacker uses in an attempt to gain access. In this process the hacker will be only provided with the company’s website or IP address. Therefore the ethical hacker simulates all web hacking techniques (e.g. Social Engineering, Network Scanning, remote access Trojans etc.) that would be used in a real life attempt to breach security.

The main motive behind the remote penetration test is to verify the integrity of an organization’s network and to proactively reduce risks to its systems and networks from an outsider hacker or its competing organization.

Internal Penetration Testing (on-site)

Internal Penetration Testing is also referred to as ‘white box’ testing. In this instance the ethical hacker will be provided with all full access to information about the client's organization and network infrastructure. The testing will be conducted onsite i.e. within the client location and will approach the testing in a more structured manner. The ethical hacker will try to use security vulnerabilities to gain access to systems that are permission protected. The ethical hacker will also try to setup ‘backdoor’ access portals that might possible be used in order to gain remote access once the internal security has been breached.

The main motive behind the onsite penetration test is to verify the integrity of an organization’s network and to proactively reduce risks to its systems and networks from an internal individual like a disgruntled employee or a visitor.