Chapter 20
Ten Reasons Hacking Is the Only Effective Way to Test
Ethical hacking is not just for fun or show. For numerous business reasons, ethical hacking is the only effective way to find the security vulnerabilities that matter in your organization.
The Bad Guys Think Bad Thoughts, Use Good Tools, and Develop New Methods
If youâre going to keep up with external attackers and malicious insiders, you have to stay current on the latest attack methods and tools that theyâre using. I cover some of the latest tricks, techniques, and tools in Chapter 10 (mobile) and Chapter 14 (websites and applications).
IT Governance and Compliance Are More Than High-Level Checklist Audits
With all the government laws and industry regulations in place, your business likely doesnât have a choice in the security matter. The problem is that being compliant with these laws and regulations doesnât automatically mean youâre secure. PCI DSS comes to mind. You have to take off the checklist audit blinders. Using ethical hacking tools and techniques enables you to dig deeper into your businessâs true vulnerabilities.
Ethical Hacking Complements Audits and Security Evaluations
No doubt, someone in your organization understands higher-level security audits better than this ethical hacking stuff. However, if you can sell that person on ethical hacking and integrate it into existing security initiatives (such as internal audits and compliance spot checks), the auditing process can go much deeper ...
Get Hacking For Dummies, 4th Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.