AN OVERVIEW OF PENETRATION TESTING

Aileen G. Bacudio; Xiaohong Yuan; Bei-Tseng Bill Chu; Monique Jones

doi:10.5121/ijnsa.2011.3602

Published November 30, 2011 | Version v1

Journal article Open

AN OVERVIEW OF PENETRATION TESTING

1. Dept. of Computer Science, North Carolina A&T State University, Greensboro, North Carolina, USA
2. Dept. of Software and Information Systems, University of North Carolina at Charlotte,Charlotte, North Carolina, USA

Penetration testing is a series of activities undertaken to identify and exploit security vulnerabilities. It helps confirm the effectiveness or ineffectiveness of the security measures that have been implemented. This paper provides an overview of penetration testing. It discusses the benefits, the strategies and the methodology of conducting penetration testing. The methodology of penetration testing includes three phases: test preparation, test and test analysis. The test phase involves the following steps: information gathering, vulnerability analysis, and vulnerability exploit. This paper further illustrates how to apply this methodology to conduct penetration testing on two example web applications.

Files

1111nsa02.pdf

Files (2.1 MB)

Name	Size	Download all
1111nsa02.pdf md5:9240530596cb25977c95fcb24fb7a4ce	2.1 MB	Preview Download

114

Views

153

Downloads

Show more details

	All versions	This version
Views	114	114
Downloads	153	153
Data volume	333.5 MB	333.5 MB

More info on how stats are collected....

DOI

Resource type

Journal article

Publisher

Zenodo

Creative Commons Attribution 4.0 International

The Creative Commons Attribution license allows re-distribution and re-use of a licensed work on the condition that the creator is appropriately credited. Read more

Technical metadata

Created: February 25, 2019
Modified: July 25, 2024

AN OVERVIEW OF PENETRATION TESTING

Creators

Description

Files

1111nsa02.pdf

Files (2.1 MB)