Services

What Do We Do?

Exfil has you covered when it comes to your mission critical security needs.

Here is an outline of our services:

Application-Security-V2

Application Security

Often, a web or mobile application is the most public portion of your company and is, therefore, the most obvious target for attack. Conversely, you may have an internal application that handles very sensitive data that hasn’t been subject to scrutiny because it is not internet-facing. We have experience testing all kinds of applications, let us assist you in gaining insight into the risks your applications pose to your organization and help you develop a roadmap to better security.

We specialize in the following types of application security engagements:

  • Web Application
  • Mobile Application
  • Thick Client Assessment
  • Web Service/API Review
  • SDLC Review/Assessment/Buildout
  • Architecture Review
  • Threat Modeling
  • Source Code Review
Network-Security-V2

Network Security

Your business relies on a secure and highly available network, but hackers are constantly poking at your network to discover any holes that may exist. Let our team of seasoned security pros use their decades of experience to help identify these flaws before they are leveraged by an attacker to compromise your sensitive data. We not only identify vulnerabilities, but we will show you the true impact of these flaws and help you develop a roadmap to close the gaps and move towards a more secure environment.

We specialize in the following types of network security engagements:

  • Vulnerability Assessment
  • Penetration Testing
  • Wireless Assessment
  • Red Team Assessment
Professional-Services-V2

Professional Services

Often times, your business may need very specialized services, but you don’t have the expertise in house to perform them or the room to add a new hire. Additionally, our clients have frequently asked us to perform various types of compliance testing, either to satisfy audit requirements or to help them prepare for an audit.

These include:

  • HIPAA Assessment
  • ISO Risk Assessment
  • NIST Assessment
  • PCI Assessment
  • Physical Security Assessment
  • Training

Custom Security Solutions

Have a need that doesn’t fit into one of the above categories? Give us a call, our engineering team loves a challenge and would be happy to talk to you about your specific needs. If we can’t deliver the work ourselves, we have partners who specialize in complimentary security services, from incident response to forensics to vulnerability research.