Wed, 04 Mar 2026 11:04:32 -0500WeeblyThu, 24 Jan 2013 00:40:24 GMThttps://www.syrinxtech.com/faq-blog/q-whats-the-difference-between-a-vulnerability-assessment-and-a-penetration-testA: From "www.darknet.org":

Vulnerability assessment is the process of identifying and quantifying vulnerabilities in a system. The system being studied could be a physical facility like a nuclear power plant, a computer system, or a larger system (for example the communications infrastructure or water infrastructure of a region).


A penetration test is a method of evaluating the security of a computer system or network by simulating an attack by a malicious hacker. The process involves an active analysis of the system for any weaknesses, technical flaws or vulnerabilities. This analysis is carried out from the position of a potential attacker, and can involve active exploitation of security vulnerabilities. Any security issues that are found will be presented to the system owner together with an assessment of their impact and often with a proposal for mitigation or a technical solution.]]>Wed, 23 Jan 2013 00:42:16 GMThttps://www.syrinxtech.com/faq-blog/q-how-do-you-pronounce-syrinxA: sir-i?(k)s or perhaps sear-inks
]]>Tue, 22 Jan 2013 01:03:12 GMThttps://www.syrinxtech.com/faq-blog/q-what-are-the-implications-to-pciA: The PCI DSS released an document in June of 2011 addressing virtualization. You can download this document by clicking here. 
]]>Tue, 22 Jan 2013 00:43:00 GMThttps://www.syrinxtech.com/faq-blog/q-what-are-the-normal-billing-terms-for-servicesA: All services performed by Syrinx Technologies are billed as fixed price projects. The normal terms are Net 15. Unless the project is large enough to be broken into sections with milestones the invoice is submitted with the draft reports.
]]>Mon, 21 Jan 2013 00:43:31 GMThttps://www.syrinxtech.com/faq-blog/q-does-syrinx-technologies-have-an-rss-feedA: Yes, you can subscribe to the Syrinx Technologies RSS feed here.
]]>Sun, 20 Jan 2013 00:43:59 GMThttps://www.syrinxtech.com/faq-blog/q-does-syrinx-technologies-have-a-blogA: Yes, you can read the blog at http://syrinxtech.blogspot.com.
]]>Sat, 19 Jan 2013 00:44:57 GMThttps://www.syrinxtech.com/faq-blog/q-whats-the-difference-between-external-and-internal-penetration-testingA: An "external" penetration test will examine the various resources available from anyone outside the security perimeter (i.e., the firewall). This testing could include the web/email servers, dial-in, wireless and VPN access. The "internal" penetration test will examine resources available to anyone inside the security perimeter. This could include employees, contractors, temporary employees, partners and attackers who manage to break through the external security perimeter.
]]>Fri, 18 Jan 2013 00:45:27 GMThttps://www.syrinxtech.com/faq-blog/q-whats-the-average-length-of-an-external-and-internal-penetration-testA: The average external test is about 16-24 man hours, while the average internal test is 24-40 man hours. Factors that influence the external testing includes number of Internet-facing devices, the number of IP domains owned by the client and whether there is wireless or dial-in testing to be performed. Factors influencing the internal testing includes the number of servers, network users and remote locations.
]]>Thu, 17 Jan 2013 00:45:51 GMThttps://www.syrinxtech.com/faq-blog/q-does-it-make-sense-to-routinely-test-my-networksA: Absolutely! Like any regular health checkup, network security audits should be performed annually. Some clients choose to alternate internal and external testing each year. Others perform quarterly testing to ensure that any problems can be quickly discovered and fixed. On a related note, some clients choose to routinely swap among their vendors who perform security audits. This provides the client a fresh set of eyes, toolsets and methodologies every 2-3 years.
]]>Wed, 16 Jan 2013 00:46:20 GMThttps://www.syrinxtech.com/faq-blog/q-what-is-an-rss-feedA: You can get more information here.
]]>