Government
State network assessment
1,200-node infrastructure reviewed and hardened against CERT-In advisories.
The challenge
A state department's network had grown across a decade of projects — 1,200 nodes, undocumented trust relationships, and a CERT-In directions deadline.
The approach
Passive discovery first, then phased VAPT by criticality, with submission-format documentation produced as testing progressed rather than assembled afterward.
The results
- Full asset inventory delivered — the department's first
- Critical attack paths to citizen-data systems closed
- Directions compliance evidenced in submission format
