Constrained Attack Surface Review
At the time of testing, an after-hours assessment found no known vulnerabilities in scope and provided clear steps to keep public-facing services controlled.

Industries
Transportation and Logistics
Services
Vulnerability Assessment
About the project
A transportation and logistics company needed an independent view of its internet-facing network gateways. The goal was to confirm what the devices exposed, check those services for known weaknesses, and provide documentation that could support vulnerability-testing compliance requirements.
Because the systems handled active business connectivity, the assessment also needed to avoid unnecessary disruption. The work focused on a controlled, non-destructive review from the public internet and practical steps for keeping the limited attack surface secure over time.
What we did
- We defined a narrow external scope around the company’s internet-facing network gateways. Testing was performed remotely and without device credentials, showing what an outside party could observe. The assessment ran after business hours and avoided disruptive checks, including denial-of-service testing. This allowed us to gather useful evidence without interrupting normal operations.
- Using Nessus Professional, we identified reachable services and compared them with known vulnerability information available at the time. The scan found no known software vulnerabilities in scope. It also showed that the gateways exposed only a small set of services, with no public administrative web portals or common remote-management interfaces detected.
- We manually followed up on automated results where extra context was needed. One scan signal suggested that a network management service might be present, but targeted checks did not return accessible management data using common default access values. This separated an informational signal from a confirmed exposure and kept the final conclusions grounded in verified behavior.
- We provided prioritized guidance for the externally reachable voice and secure remote-access services, including reviews of access controls, logging, and whether public exposure remained necessary. We also recommended checking management settings directly on the devices and using a more secure protocol version where possible. The final documentation could support an auditor’s review of completed vulnerability testing.
Technologies Used
Tenable IO

