Security Penetration Test On Fcse's It Services

Abstract

Network security penetration tests are an excellent method for evaluating the network security level of a company’s IT services. The method of penetration testing is complex and without the appropriate care, disastrous effects on the systems that are being tested can happen. This paper gives an overview on how a penetration test can be successfully done. The penetration tests were made on the network of Faculty of Computer Science and Engineering (FCSE) in Skopje. The methodology used in this paper is showing the process that penetration testers should go through. The idea behind the methodology is that the penetration testers should follow a pre-defined format during tests. The purpose of this paper is to document and describe how a pen test should be performed and what the potential impacts and effects could be. The results of the realized series of penetration tests show many security flaws on several IT systems and this paper proposes measures how to mitigate the risks to acceptable levels.