Penetration Testing Essay

Words: 3392
Pages: 14
Open Document
Penetration Testing

ABSTRACT
Penetration testing has been well popularized by the media. Many companies are now offering penetration services to identify vulnerabilities in systems and the surrounding processes. This report will Discuss "Penetration Testing" as a means of strengthening a corporate network's security. This report is divided into three parts. Introduction will give you a brief and basic overview of Penetration Testing and why we need Penetration Testing, The second part is the technical breakdown explains The strategy, model and type of Penetration Testing. In the conclusion, we will discuss both the value and limitation of Penetration Testing.

1. INTRODUCTION
As electronic commerce, online business-to-business …show more content…
Internal, "authorized" users of a system also present a significant security exposure. According to a recent survey, [05] 75% of respondents cited that disgruntled employees are the most likely source of attacks. Employees or other trusted parties were those most likely to be responsible for vandalism, theft of information and sabotage of data.

Hackers, both internal and external, identify targets through choice and opportunity. A "target of choice" is one that is specifically identified and selected. Hackers penetrate targets to achieve notoriety within their community or to reap more tangible benefits from, say, information theft and industrial espionage. Large, high-profile companies, such as governments and financial institutions, are regular targets of choice. Employers and former employers often represent targets of choice for disgruntled employees, suppliers or contractors.

A "target of opportunity," on the other hand, has been selected because of fortuitous circumstances, such as relative ease of access, availability of insider information, or luck. As such, almost any company can be a target of opportunity. Internal attacks also present a significant exposure, as employers and former employers often, perhaps unknowingly, provide ample opportunity for disgruntled employees, suppliers or contractors to attempt unauthorized access.

Many companies have deployed sophisticated security
Show More

Related Documents: Penetration Testing Essay

Essay about The Culture and Language of Penetration Testing

The Culture and Language of Penetration Testing Annette Coes May 27, 2009 Order of Contents Order of Contents 2 Executive Summary 3 Introduction 4 What is Penetration Testing? 4 Compliance 5 Enumeration 5 Network Scan 6 What Penetration Testing is not? 7 Why is Penetration Testing needed? 8 Hacking Methodologies 8 Hackers 8 Hacking Methodologies Continued 10 Future of Penetration Testing 11 Works Cited 12 Appendix: Journal Article Analysis 14 Appendix: Interview with…

Words 2480 - Pages 10

Essay PenTest MSaindane

Penetration testing – A Systematic Approach PENETRATION TESTING – A SYSTEMATIC APPROACH INTRODUCTION: The basic idea behind writing this article was to put forward a systematic approach that needs to be followed to perform a successful penetration test. It has been written keeping in mind both, existing penetration testers as well as newcomers who want to make this field as a career. People responsible for maintaining security in an organization can refer to this and know what they can expect from such an exercise…

Words 2869 - Pages 12

Unit 1 Lab 1 Assessment Essay

Lab 1 Assessment Worksheet Develop an Attack & Penetration Plan 1. List the 5 steps of the hacking process. Reconnaissance Scanning Gaining Access Maintaining Access Covering Tracks 2. In order to exploit or attack the targeted systems, the first initial step I would do to collect as much information as possible about the targets prior to devising an attack and penetration test plan would be reconnaissance. I would use passive reconnaissance as this pertains to information gathering.…

Words 1224 - Pages 5

Nt1330 Unit 7

PCI Penetration Testing Web Copy What is Payment Card Industry Data Security Standard (PCI/DSS)? PCI/DSS refers to policies set by credit card companies including Visa, MasterCard, Discover, and American Express to protect cardholders’ financial data. The data security standard focuses on six key areas – creating a secure network, ensuring cardholder information is well protected, building an efficient vulnerability management program, testing and monitoring networks, and maintaining as well as enforcing…

Words 1057 - Pages 5

NT1330 Unit 3 Assignment Analysis

social engineering penetration testing on a periodic basis. These activities involve scanning desktops, laptops, servers, network elements, and other computer systems owned by this organization to discover vulnerabilities present on these systems. With knowledge of these vulnerabilities our organization can apply the necessary security fixes or other compensating controls to improve the security of our environment. The purpose of this memo is to grant authorization to the penetration test team to conduct…

Words 181 - Pages 1

Slump Test Lab Report

For low temperature conditions and retarded mixes the initial penetration may be deferred for an elapsed time of 4 to 6 hours, and perhaps longer. Not less than 6 penetration resistance determinations made in each rate of hardening and the time interval between penetration resistance . Calculation: Calculate the penetration resistance in N/mm2 (kgf/cm2) as the force required to cause a 25 mm depth of penetration of the needle divided by the area of the bearing surface of the needle.…

Words 3219 - Pages 13

Essay about Hackers and Hacking

organization or even the government. Ethical hackers work for organization, companies, the FBI, governments and the military. The ethical hacker uses tools and techniques to obtain secure and classified information. One such technique is penetration testing, which is assessing the overall security of a system or program before attackers do. Specifically, the process of attempting to gain access to resources without knowledge of usernames, passwords and normal means of access (Northcutt, 2006).…

Words 970 - Pages 4

Nt1310 Unit 3 Process Analysis

secure you have to perform a penetration test(pen test). Kali Linux is an operating system (OS) that gives you all the tools you will need to determine if the network is secure. Kali Linux is funded by the Offensive Security Ltd and the core developers are Mati Aharoni, Devon Kearns and Raphaël Hertzog. Kali Linux is a useful OS for penetration testing(pen testing). Some useful Kali Linux tools are Nmap (Network Mapper), Wireshark and Nikto. In order to do pen testing, there are four phases. The…

Words 828 - Pages 4

Market Testing Essay

MKTG 492 Professor Sam Min Lecture 6 Market Testing Let’s say (_________) testing showed a need, and the (______________) test indicated the emerging product met that need, without serious drawbacks. And we have a marketing plan. Now what do we do? Market the item quickly, before competition finds out what we are up to? Or find a way to check out what we have done, to see if it really looks like we will be successful, before spending what usually is a lot of money on the launch? The option…

Words 1058 - Pages 5

Essay Welding Lab

purpose complying with the appropriate Standards. The equipment should be of a power commensurate with the provisional welding procedure requirements. All equipment should be maintained in a serviceable condition. Any measuring instruments used for testing and inspection should be calibrated in line with the manufacturers recommendations. Heat Treatment Good welding practice is essential in preventing the weld cracking, which includes preheating when needed. Any preheat specified is to be maintained…

Words 889 - Pages 4