Open AccessCRITICAL ANALYSIS OF PENETRATION TESTING PROCESS AND TOOLS
Author(s) -
Geetanjali sao,
S. Pravin Kumar,
Suman Madan
Publication year - 2021
Publication title -
epra international journal of research and development
Language(s) - English
Resource type - Journals
ISSN - 2455-7838
DOI - 10.36713/epra8540
Subject(s) - security testing , penetration test , penetration (warfare) , computer science , computer security , risk analysis (engineering) , test strategy , information security , crew , vulnerability assessment , process management , engineering , business , operations research , security information and event management , psychology , cloud computing security , cloud computing , joint (building) , architectural engineering , programming language , software , aeronautics , operating system , psychological resilience , psychotherapist
Information is more susciptible than ever, and each technology advancement creates a new security issue that necessitates a new approach to solving the problem. Penetration testing is used to assess the security of an IT infrastructure by exposing its vulnerabilities in a safe manner. It also aids in acquiring access to the effectiveness of existing defense systems, tactics, and policies. The Penetration testing is carried out on a regular basis in order to detect and control risks to achieve ethics to be possessed by the testing crew involved in penetration test. This research uses a qualitative research methodology for investigating manual testing and automated testing. It further aims at critically investigation penetration testing and its importance with tools available for it. KEYWORDS: IT Security, Penetration test, IT governance, Vulnerability assessment.