7 - Security Testing

Study this security testing

Uploaded by

tssyahoo1

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

30 views

7 - Security Testing

Study this security testing

Uploaded by

tssyahoo1

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 31

SECURITY

TESTING
WHAT IS SECURITY
TESTING?
• A type of software testing
that detects vulnerabilities,
threats, and risks in an
application to prevent
malicious attacks.
• Its goal is to identify potential
weaknesses that could lead
to loss of data, revenue, or
reputation due to internal or
why is it
important?
• The primary goal of security
testing is to identify system
threats and assess
vulnerabilities to prevent
exploitation and ensure
continuous operation.
• It also helps detect security
risks and aids developers in
ﬁxing issues through coding.
1 Vulnerability Scanning

types 2 Security Scanning

3 Penetration Testing

4 Risk Assessment

5 Security Auditing

6 Ethical Hacking

7 Posture Assessment
vulnerability
scanning
Done through
automated software to
scan a system against
known vulnerability
signatures
security
scanning
Involves identifying
network and system
weaknesses, and later
provides solutions for
reducing these risk.
PENETRATION
TESTING
Simulates and attack
from a malicious
hacker. Involves
analysis of potential
vulnerabilities to
external hacking
attempt.
Risk assessment
Analysis of security
risks observed in the
organization. Can be
classifies as Low,
Medium, and High.
Risk assessment
Analysis of security
risks observed in the
organization. Can be
classifies as Low,
Medium, and High.
SECURITY
AUDITING
Internal inspection of
Applications and
Operating systems for
flaws.
ETHICAL HACKING
Hacking and
Organization Software
system. The intent is to
expose security flaws in
the system.
Posture
assessment
Combines Security
scanning, Ethical
Hacking and Risk
Assessments to show
an overall security
posture of an
organization.
how to do security testing
how to do security testing
test plan should include

Security- Test Test Tool Analysis of

various
related Data required
tests
test related for outputs
cases or to security from
scenarios different
security testing
security
testing tools
methodologie
1 Tiger Box

s/approach/ 2 Black Box

techniques 3 Grey Box

for security
testing
Tiger box
Usually done on a
laptop which has a
collection of OSs and
hacking tools. Helps
penetrations testers
and security testers to
conduct vulnerabilities
black box
Tester is authorizes to
do testing on
everything about the
network topology and
the technology
grey box
Partial information is
given to the tester
about the system, and
it is a hybrid of white
and black box models
security 1 Hackers

testing roles 2 Crackers

3 Ethical Hacker

4 Script Kiddies or packet monkeys

HAckers
Access computer
system or network
without authorization
Crackers
Break into the systems
to steal or destroy data
ETHICAL HACKERS
Performs most of the
breaking activities but
with permission from
the owner
Script kiddies
or packet
Inexperienced hackers
monkeys
with programming
language skill
1 Intruder
security
2 Acunetix
testing tools 3 Open Web Application Security

Subject (OWASP)
4 Wireshark

5 w3af
Intruder
An enterprise-level
vulnerability scanner.
Provides prioritized
results and proactive
threat scans to save
time and enhance
Acunetix
By Invicti
Helps small to medium
business protect web
applications from data
breaches by detecting
a variety of security
issues and enabling
OWASP
A global non-proﬁt
improving security
software security,
offering tools for
Open Web Application
penetration testing
Security Project
various software
environments and
Wireshark
A network packet
analyzer that captures
and displays real-time
network data, offering
detailed protocol and
packet information.
w3af
A web application
attack and audit
framework with
discovery, audit, and
attack plugins that
work together to ﬁnd
and exploit
vulnerabilities in
THANK YOU FOR
LISTENING!

Penetration Tester
No ratings yet
Penetration Tester
522 pages
The Certified Ethical Hacker Exam - version 8 (The concise study guide)
From Everand
The Certified Ethical Hacker Exam - version 8 (The concise study guide)
alasdair gilchrist
3/5 (9)
05 Vulnerability Assessment
No ratings yet
05 Vulnerability Assessment
32 pages
Penetration Tester Resume Sample
No ratings yet
Penetration Tester Resume Sample
3 pages
Welcome To: Knowledge Sharing 2020
No ratings yet
Welcome To: Knowledge Sharing 2020
14 pages
Testing Practice-TA-Security Testing-Introduction05
No ratings yet
Testing Practice-TA-Security Testing-Introduction05
14 pages
TwishaAhuja 16010421129 Exp8
No ratings yet
TwishaAhuja 16010421129 Exp8
9 pages
1. Security Testing
No ratings yet
1. Security Testing
28 pages
CNIT 125: Information Security Professional (Cissp Preparation)
No ratings yet
CNIT 125: Information Security Professional (Cissp Preparation)
25 pages
Security Testing
No ratings yet
Security Testing
4 pages
Hacker’s Guide to Machine Learning Concepts
From Everand
Hacker’s Guide to Machine Learning Concepts
Trilokesh Khatri
No ratings yet
General SIEM Q
No ratings yet
General SIEM Q
12 pages
Pentest+ Exam Pass: Penetration Testing And Vulnerability Management For Cybersecurity Professionals
From Everand
Pentest+ Exam Pass: Penetration Testing And Vulnerability Management For Cybersecurity Professionals
Rob Botwright
No ratings yet
Unit II - SECURE DEVELOPMENT AND DEPLOYMENT
No ratings yet
Unit II - SECURE DEVELOPMENT AND DEPLOYMENT
24 pages
Pen Testing
No ratings yet
Pen Testing
19 pages
White Paper On Security Testing
No ratings yet
White Paper On Security Testing
3 pages
Security Testing
No ratings yet
Security Testing
16 pages
ETHICAL HACKING GUIDE-Part 1: Comprehensive Guide to Ethical Hacking world
From Everand
ETHICAL HACKING GUIDE-Part 1: Comprehensive Guide to Ethical Hacking world
POONAM DEVI
No ratings yet
ATS-15-16 Security Testing Part 3
No ratings yet
ATS-15-16 Security Testing Part 3
56 pages
Practical Web Security Testing Evolution of Web Application Modules and Open Source Testing Tools
No ratings yet
Practical Web Security Testing Evolution of Web Application Modules and Open Source Testing Tools
4 pages
Vulnerability Exploitation and Defense: Penetration Testing (Lec # 4)
No ratings yet
Vulnerability Exploitation and Defense: Penetration Testing (Lec # 4)
4 pages
1 - MSF-I - Introduction To MSF
No ratings yet
1 - MSF-I - Introduction To MSF
28 pages
Application Penetration Testing
No ratings yet
Application Penetration Testing
4 pages
Cybersecurity Fundamentals Explained
From Everand
Cybersecurity Fundamentals Explained
Brian Mackay
No ratings yet
Unit 2
No ratings yet
Unit 2
65 pages
The Complete Guide to Parrot OS: Ethical Hacking and Cybersecurity
From Everand
The Complete Guide to Parrot OS: Ethical Hacking and Cybersecurity
Robert Johnson
No ratings yet
Practical Pentesting Guide: Preparation for Certification and Ethical Hacking
From Everand
Practical Pentesting Guide: Preparation for Certification and Ethical Hacking
Evan Blake
No ratings yet
Nufuzetme 1
No ratings yet
Nufuzetme 1
6 pages
Lecture 13. Security Assessment and Testing
No ratings yet
Lecture 13. Security Assessment and Testing
18 pages
Kali Linux, Ethical Hacking And Pen Testing For Beginners
From Everand
Kali Linux, Ethical Hacking And Pen Testing For Beginners
BHARAT NISHAD
No ratings yet
Cissp Domain 6
No ratings yet
Cissp Domain 6
9 pages
UNIT-3
No ratings yet
UNIT-3
40 pages
KrashConsulting-Services-Overview
No ratings yet
KrashConsulting-Services-Overview
20 pages
Orange Pentest Service
No ratings yet
Orange Pentest Service
2 pages
130 To 148
No ratings yet
130 To 148
114 pages
CHPT 1-Introduction
No ratings yet
CHPT 1-Introduction
19 pages
Risk Based Testing
No ratings yet
Risk Based Testing
37 pages
General Approach To Security Testing
No ratings yet
General Approach To Security Testing
11 pages
Debugging Playbook: System Testing, Error Localization, And Vulnerability Remediation
From Everand
Debugging Playbook: System Testing, Error Localization, And Vulnerability Remediation
Rob Botwright
No ratings yet
Trustmarque Penetration Testing Brochure
No ratings yet
Trustmarque Penetration Testing Brochure
18 pages
Level of Testing and Special Tests
No ratings yet
Level of Testing and Special Tests
43 pages
IJRPR2982
No ratings yet
IJRPR2982
3 pages
GitHub - Sundowndevhacker-Roadmap A Collection of Hacking Tools, Resources and References To Practice Ethical Hacking
No ratings yet
GitHub - Sundowndevhacker-Roadmap A Collection of Hacking Tools, Resources and References To Practice Ethical Hacking
1 page
Types of Penetration Testing and Their Pros and Cons
No ratings yet
Types of Penetration Testing and Their Pros and Cons
4 pages
Ethical Hacking 101
From Everand
Ethical Hacking 101
Lawrence Bennier
4/5 (2)
Ethical Hacking
From Everand
Ethical Hacking
Elias Mutegi
No ratings yet
2.penetration testing 2024
No ratings yet
2.penetration testing 2024
21 pages
Security testing
No ratings yet
Security testing
6 pages
3
No ratings yet
3
21 pages
Penetration Testing Fundamentals-2: Penetration Testing Study Guide To Breaking Into Systems
From Everand
Penetration Testing Fundamentals-2: Penetration Testing Study Guide To Breaking Into Systems
Devi Prasad
No ratings yet
Ess Unit 4
No ratings yet
Ess Unit 4
23 pages
UNIT I
No ratings yet
UNIT I
14 pages
ethical hacking notes
No ratings yet
ethical hacking notes
49 pages
UAD Plug-Ins Manual
No ratings yet
UAD Plug-Ins Manual
19 pages
Lecture3 SSD Israfil
No ratings yet
Lecture3 SSD Israfil
40 pages
Different Types of Cybersecurity Testing and their benefits
No ratings yet
Different Types of Cybersecurity Testing and their benefits
4 pages
Security Testing Documentation
No ratings yet
Security Testing Documentation
25 pages
Penetration Testing
100% (1)
Penetration Testing
52 pages
Security Assessment and Testing
No ratings yet
Security Assessment and Testing
44 pages
Ethical Hacking Basics for New Coders: A Practical Guide with Examples
From Everand
Ethical Hacking Basics for New Coders: A Practical Guide with Examples
William E. Clark
No ratings yet
Unit 9 Penetration Testing
100% (1)
Unit 9 Penetration Testing
29 pages
DPS PYQs
No ratings yet
DPS PYQs
11 pages
CND PDF
No ratings yet
CND PDF
1 page
B.S.A College of Engineering & Technology, Mathura
No ratings yet
B.S.A College of Engineering & Technology, Mathura
27 pages
KPN PKIoverheid CPS v5.3 English
No ratings yet
KPN PKIoverheid CPS v5.3 English
91 pages
Literature Review On Aes Algorithm
100% (2)
Literature Review On Aes Algorithm
4 pages
Information About Ethical Hacking
No ratings yet
Information About Ethical Hacking
2 pages
Industrial Training
No ratings yet
Industrial Training
12 pages
WWW Techtarget Com Searchsecurity Definition DMZ
No ratings yet
WWW Techtarget Com Searchsecurity Definition DMZ
6 pages
Protect Against Attacks
No ratings yet
Protect Against Attacks
23 pages
Algebraic Complexity Reduction and Cryptanalysis of GOST: Nicolas T. Courtois
No ratings yet
Algebraic Complexity Reduction and Cryptanalysis of GOST: Nicolas T. Courtois
224 pages
NACSA - Surat Makluman Dari KPKN Ke KSU PDF
No ratings yet
NACSA - Surat Makluman Dari KPKN Ke KSU PDF
17 pages
Argumentative Essay: Facial Recognition in Surveillance: Privacy vs. Security
No ratings yet
Argumentative Essay: Facial Recognition in Surveillance: Privacy vs. Security
9 pages
Magento'S Approach To Pci Compliance: Why Merchants Must Be Pci-Compliant
No ratings yet
Magento'S Approach To Pci Compliance: Why Merchants Must Be Pci-Compliant
2 pages
39) An FPGA Implementation of 30Gbps Security Module For GPON Systems
No ratings yet
39) An FPGA Implementation of 30Gbps Security Module For GPON Systems
2 pages
À À À À À À À À ¡VPN À À À - Vpngate Japan 10ip - Ovpn
No ratings yet
À À À À À À À À ¡VPN À À À - Vpngate Japan 10ip - Ovpn
4 pages
4.cryptography Handout 2
No ratings yet
4.cryptography Handout 2
87 pages
Getting Started in Cybersecurity
No ratings yet
Getting Started in Cybersecurity
28 pages
Matching Quiz 1
No ratings yet
Matching Quiz 1
3 pages
Access Management Policy Template
No ratings yet
Access Management Policy Template
3 pages
Cyber Security Interview Questions: What Is Risk, Vulnerability and Threat?
100% (1)
Cyber Security Interview Questions: What Is Risk, Vulnerability and Threat?
5 pages
CIS Controls v8 Mapping To SOC2 2 2023
100% (1)
CIS Controls v8 Mapping To SOC2 2 2023
68 pages
Microsoft Security Analysis
No ratings yet
Microsoft Security Analysis
4 pages
Red Hat Enterprise Linux-8-Security Hardening-En-us
No ratings yet
Red Hat Enterprise Linux-8-Security Hardening-En-us
164 pages
The Effect of Algorithm Type and Plaintext Length On Encryption - Mathematics Science Fair Project Ideas
No ratings yet
The Effect of Algorithm Type and Plaintext Length On Encryption - Mathematics Science Fair Project Ideas
2 pages
Etoken Pro PB (En) v11 Nov062014 Web
No ratings yet
Etoken Pro PB (En) v11 Nov062014 Web
2 pages
Complete Cryptocurrency Course Dashboard V2
No ratings yet
Complete Cryptocurrency Course Dashboard V2
1,570 pages
Network Security White Paper
No ratings yet
Network Security White Paper
7 pages
Digital Literacy Take Away Cat Level 6
No ratings yet
Digital Literacy Take Away Cat Level 6
4 pages
MTV
100% (1)
MTV
3 pages