Athento conducts periodic penetration tests or ethical hacking tests. These tests can be of the following nature:
Automated Tests and VAPT
Various tools are used to scan instances and servers in an automated and continuous manner. These tools operate externally, without agents or software within the servers themselves, and simulate attacks, analyze vulnerabilities, anomalies, or potential risks in the application or servers from an external perspective.
In the case of production environments, these scans are conducted on a weekly basis.
The results of the annual test performed on a reference Athento instance can be found on the security portal.
Third-Party Penetration Tests
Athento allows security audits and penetration testing for Enterprise customers. In these cases, the client's security team or a company hired by the client conducts coordinated penetration tests in collaboration with Athento.
Athento Bounty Program
Athento has an ethical hacking program that encourages research and the discovery of vulnerabilities by engineers, independent security professionals, and external hackers. These security experts report the vulnerabilities they find and, in return, receive financial compensation commensurate with the severity of the vulnerability, anomaly, or risk discovered.