The main objective of the penetration test is to help the management of the company to secure the network infrastructure. The paper contains technical terms, but the report has been generated in a manner that people who have basic knowledge of computer can understand it. There is a general process and methodology used in the penetration testing before finding the vulnerabilities in the network or system. There are numbers of benefits of penetration test which includes risk findings in network infrastructure, provide details steps to protect network compromise, opportunity to upgrade the network system with new security features etc. Different types of testing included in this penetration testing are Black, white and gray box tests which provides different approaches for assessing the security of web application. There are so many different types of tools available in the IT world for penetration assessment. Both manual and automated testing is used in this paper in order to identify risks and provide solutions for XYZ Company. Relative to other network environments operated by organizations in XYZ Company’s industry of similar size, I believe XYZ Company’s overall network security posture to be fair.