Introducing Cosmos

Winner of SC Media's Best Emerging Technology Award

See how continuous testing and attack surface management can help you defend forward.

Request A Demo

Platform Overview

Meet Cosmos (formerly CAST): the continuous offensive security platform designed to provide proactive defense.

Attack Surface Management

Get unmatched visibility into your changing external attack surface with continuous discovery and mapping.

Exposure Identification

Eliminate noise and discover critical exposures, including steppingstones to more complex attack chains.

Continuous Attack Emulation

Emulate real-world attacks to understand exposures and post-exploitation pathways, then operationalize findings to close attack windows.

The Best Defense is a Great Offense

See Why We're the Leaders in Offensive Security

Explore Services

Application Security

Ensure your applications are secure and improve your DevSecOps practices.

Red Team & Readiness

Get a holistic view of your ability to defend against a real-world attack.

Ransomware Simulations

IoT & Product Security

Validate interconnected devices and products are secure against attackers.

Cloud Security

Assess cloud security posture with expert testing and analysis of your environment.

Network Security

Get insight into how skilled adversaries could establish network access and put sensitive systems and data at risk.

Assessments for Our Partners

We're proud to work with Google, Facebook, and Amazon to increase security in their partner ecosystems.

New SANS Research!

Inside the Minds & Methods of Modern Adversaries

We surveyed 300+ hackers to gain insight into how they think, the tools they use, their speed, and favorite targets. See what we found.

Get the Report

Resource Center

Discover new offensive security resources, ranging from reports and eBooks to slide decks from speaking gigs.

Bulletins & Advisories

Explore the latest security bulletins and advisories released by our team.

BIG-IP Scanner Available
Latest
View All

Blog

Dive into our blog for insights and perspectives from our offensive security experts.

Research & Tools

We are the innovators behind some of the most popular open source security tools. Check them out here!

Bishop Fox Labs

Learn more about our research — and our commitment to openly sharing information.

Why Partner with Us?

Join Forces with the Leaders in Offensive Security

Independent Assessment by TAG Cyber

Get the Report

Partner Program Overview

Learn about our partner programs and see how we can work together to provide best-in-class security offerings.

Find a Partner

Check out our awesome ecosystem of trusted partners to find the right solution for your needs.

Become a Partner

Explore partnership opportunities and apply to join forces with Bishop Fox.

Assessments for Our Partners

We're proud to work with Google, Facebook, and Amazon to increase the security of their partner ecosystems.

We're Hiring!

Want to Work with the Best Minds in Offensive Security?

Be part of an elite team and work on projects that have a real impact.

Explore Openings

Company Overview

Get to know us. Learn about our roots and see why we're on a mission to improve security for all.

Events

Join us at an upcoming event or peruse our speaking engagements, past and present.

Newsroom

Read the latest articles, announcements, and press releases from Bishop Fox.

Want to get in touch? We're ready to connect.

Career Opportunities

We're hiring! Explore our open positions and discover why the Fox Den is a great place to build your career.

Intern & Educational Programs

Starting your offensive security journey? Check out our internships and educational programs.

Bishop Fox Mexico

¡Celebramos! Bishop Fox is now in Mexico. Learn more about our expansion.

Keep the perimeter secure

External Penetration Testing Services

Our team of highly experienced consultants puts your external security controls to the test. Conducting zero, partial, or full knowledge assessments, we execute real-world attack scenarios that uncover gaps and weaknesses that could grant adversaries unauthorized access to your protected networks.

Get Started

External Penetration Testing

Zero in on your biggest risks with external penetration testing.

Simulating an attacker's experience requires more than an automated vulnerability scan. Our external penetration methodology covers the full spectrum of your perimeter — websites, assets, systems, applications — if an attacker will target it, you can guarantee we will put it to the test.

Using a multi-point methodology and proprietary toolsets, our automated and manual techniques recreate real-world attack conditions, giving you unprecedented insight across your perimeter assets and the vulnerabilities adversaries specifically target.

Our clear and actionable findings arm your team with prioritized recommendations that ultimately enhance prevention and detection capabilities while satisfying regulatory, third party, and business stakeholder requirements.

External Penetration Testing highlights:

Take an attacker's perspective: Our network discovery methods uncover the full array of your externally-facing assets, enabling testers to target and exploit high reward systems in the same way real-world adversaries would.
Illuminate prevention and detection weaknesses: Our multi-point methodology goes beyond automated scanning, conducting exploitation of applications, brute-forcing, information retrieval attacks, and more extensive techniques that grant assessors access to unauthorized systems.
Take action before attackers do: Adversaries are armed with the same tactics and techniques as our testers. Beat them to the punch with clear and actionable guidance that addresses critical vulnerabilities and defensive weaknesses and strengthen prevention and detection capabilities.

Bishop Fox external penetration testing review methodology document with a stamp that has the word methodology imprinted.

Peek under the hood

Our External Penetration Testing Methodology

Bishop Fox’s external penetration testing methodology identifies security vulnerabilities by simulating the real-world threat of an attacker attempting to exploit target networks and applications. These zero-, partial-, or full-knowledge assessments begin with the discovery of externally identifiable systems and the footprinting of designated networks and applications.

View Methodology

Secure your borderless perimeter

Get a complete view of your external security posture.

Map out attack paths to see where your biggest risks lie

Our external penetration tests illustrate a simulated attack path an external attacker could take — from how to gather and weaponize public information to how to find and exploit high-value internet-facing assets. Use our findings and recommendations to shore up holes in your external defenses.

Validate policies, verify security controls, and fill the gaps

Our customers use our external penetration tests to validate external security policies, pressure-test firewall configurations, and verify that remediation measures have been correctly implemented after a security incident or compromise. When it comes to cybersecurity, trust but always verify.

Accelerate compliance for PCI-DSS, FINRA, and more

Many of our customers rely on our expertise to help them meet and manage their compliance requirements — from PCI-DSS to HIPAA to FINRA and others. Our reports provide auditors documented proof that an organization has implemented regular scanning procedures and understands their external security posture.

Gain a real-world perspective on risk

Generic vulnerability reports either provide a false sense of security or overwhelm teams with volumes of irrelevant data. Our pen tests and reports give you a view only an advanced and creative attacker can give you — one that’s accurate and actionable.

Leverage highly skilled and informed testing

While each engagement is unique, our process remains the same. After gathering open-source intelligence, we conduct: domain and sub-domain enumeration, CIDR block enumeration, network scanning for open services, vulnerability identification, and vulnerability exploitation.

Reduce your attack surface area

Simulating real-world attacks against your perimeter is the first step to shoring up your defenses. Go beyond a single snapshot from an automated test — gain the accuracy, credibility, and context to truly reduce your overall attack surface area.

Expose security gaps in your perimeter

Our external penetration testing reports expose the biggest and most visible gaps in your security infrastructure. Too often, teams invest in the programs with the loudest hype rather than the biggest payoff. Let us help you achieve the real outcomes you need to improve your security.

Demonstrate competitive differentiation

A regular external penetration testing program shows your customers, partners, and other stakeholders how seriously you take cybersecurity. In addition to helping you achieve and maintain compliance, our services strengthen your posture and help you gain customer trust.

A hand opening an August Home Smart Lock that Bishop Fox performed mobile application penetration testing. August: Built-in Security in IoT Devices.

Home security meets cybersecurity

To ensure the security of its product, August Home sought a firm that could assess all aspects of the product — hardware, firmware, and software. Their search led them to Bishop Fox.

Read Full Story View All Stories

Inside the Fox Den

Meet Our Featured Fox

Matt Thoreson

Senior Security Consultant

Matt Thoreson (OSCP, CISSP) is a Senior Consultant at Bishop Fox and leads the External Penetration Testing service, His primary focuses are penetration testing external and internal networks. Matt also has extensive experience in red teaming, social engineering, and mobile application testing. He has advised Fortune 500 brands and startups in industries such as technology, healthcare, energy, finance, and retail. His professional achievements include leading a red teaming engagement for a state-wide energy provider, performing black-box testing for a multi-national energy company, and creating and operating a threat analysis project for a regional university consortium.

Related Resources

Whenever we can, we share our knowledge freely and openly.

Illustration of teal and white eyeball titled eyeballer

Tech

Aug 08, 2019

Meet Eyeballer: An AI-powered, Open Source Tool for Assessing External Perimeters

By Dan Petro, Gavin Stroy

Young boy squatting in field looking in the distance through telescope

Industry

Mar 23, 2021

If Your Scope Is Bad, Your Pen Test Will Be Bad

By Jessica La Bouve

Purple toy men under cover slide for RMI scout

Tech

Dec 08, 2020

Lessons Learned on Brute-forcing RMI-IIOP With RMIScout

By Jake Miller

Start defending forward. Get in touch today.

Whether you know exactly which services you need or want help in figuring out what solution is best for you, we can help.

Get in Touch

This site uses cookies to provide you with a great user experience. By continuing to use our website, you consent to the use of cookies. To find out more about the cookies we use, please see our Privacy Policy.