What is Penetration Testing?
It is the method of testing
where the areas of weakness in software systems in terms of security are put to
test to determine, if ‘weak-point’ is indeed one, that can be broken into or
not.
Performed for: Websites/Servers/Networks
How is it performed?
- Step #1. It starts with a list of Vulnerabilities/potential problem areas that would cause a security breach for the systems.
- Step #2. If possible, this list of items has to be ranked in the order of priority/criticality
- Step #3. Devise penetration tests that would work (attack your system) from both within the network and outside (externally) to determine if you can access data/network/server/website unauthorized.
- Step #4. If the unauthorized access is possible, the system has to be corrected and the series of steps need to be re-run until the problem area is fixed.
