hackerkeys

Citrix is a highly popular platform commonly used for remote access and thin-client solutions, and in Bring Your Own Device (BYOD) environments. Over the years, time and time again, Mandalorian have found Citrix environments with any number of misconfigurations that would allow an attacker or malicious user to compromise the system, break out of a restricted environment, steal data or, in some cases, compromise internal networks from the Internet. To help our customers manage Citrix securely, our Citrix Security Testing service gives our customers help where they need it and peace of mind.

The Mandalorian Approach

Following an initial scoping meeting or call, we will provide a fully scoped quote for your Citrix Security Test. Citrix tests are usually fairly short except for larger deployments or those using thin-client architectures.

Our consultants will perform the work in accordance with the agreed scope. Most Citrix Security Tests are conducted remotely but some may require on-site access.

Once the Citrix Security Test is complete, our consultants will produce a report with a high level executive summary, a detailed technical section, and appendices containing any relevant observations requiring further detail.

This can take place as a one-off exercise, an exercise with a follow-up and comparative reporting, or as a regular managed service.

Typical Findings

While no two Citrix Security Tests are the same, there are some common findings that often arise:

  • Weak file permissions
  • Data exfiltration vulnerabilities
  • Privilege escalation
  • Unauthorised data access
  • Firewall bypass
  • Countermeasures/controls bypasses

Why Choose Mandalorian?

Our consultants have been breaking into (and out of) Citrix deployment configurations for as long as Mandalorian has been in business. Citrix Security Tests tend to be short engagements, usually no more than several days in total, with the exception of larger deployments. As such the value these tests provide is unparalleled. Of course we don’t sell any Citrix security products or follow-on services, assuring you of a fully independent test.

Next Steps

Call us now on 01256 830 146 or give us a few details about when your next health check is due and how we can help and we’ll get back to you asap.