Penetration testing

<< Previous: Cyber sec threatsNext: Social engineering >>

About penetration testing

Penetration testing is the process of attempting to gain access to resources without knowledge of usernames, passwords and other normal means of access. There are two types of penetration testing for you to be aware of: white box penetration testing and black box penetration testing.

Penetration testers report back their findings so that firms can improve their security.

White box penetration testing

This is where the tester has some knowledge of the system they are breaking into. The aim of a white-box penetration test is to simulate a malicious insider who has knowledge of and possibly basic credentials for the target system.

Black box penetration testing

This is where the tester has no knowledge of the system they are breaking into. The aim of a black-box penetration test is to simulate an external hacking or cyber warfare attack where the attacker has no knowledge of any credentials for the target system.

Knowledge check


Questions:
Correct:

Question text


<< Previous: Cyber sec threatsNext: Social engineering >>

© All materials created by and copyright S.Goff