About security testing:
![Social engineering](https://tenendo.com/wp-content/uploads/2021/01/security_10-768x768.png)
Social engineering
During this social engineering engagement, it was possible to achieve persistent internal access, exfiltrate confidential and personal information, and compromise the internal segmented infrastructure.
![Internal Adversary Simulation Case](https://tenendo.com/wp-content/uploads/2020/07/case-study-02.jpg)
Internal Adversary Simulation Case
The adversary simulation activity helped the client identify and remediate multiple issues with the on-premise infrastructure and vulnerabilities, calculate potential risks, and improve the overall security posture. Each finding also included proposed solutions for applying industry-standard defences.
![Client-Bank application compromise](https://tenendo.com/wp-content/uploads/2020/07/case-study-05.jpg)
Client-Bank application compromise
This case is a very good example why manual penetration tests are valuable – the team achieved compromise without administrator access to the application, not using any known exploits or discovering injection/deserialization/other RCE flaws.