Application Security Assessments
Validation Services Overview
Penetration Testing
Conducted without prior knowledge of the environment (blind), the penetration test identifies potential security holes and then exploits them to prove a vulnerability exists.
Any vulnerability discovered in the Penetration Test is further investigated to determine remediations required in security policies, configurations, file permissions and software patches.
The PCI DSS requires that Merchants perform annual Penetration testing as part of their validation.
