Information Security A Practical Guide: Bridging the Gap between IT and Management

CHAPTER 9: PENETRATION TESTING

Chapter Overview

Poor penetration testing frustrates me, and I have come across a few organisations that fail to get the basics right. Good penetration testing offers a high degree of assurance that the systems you have implemented have been done so securely, but you only get this assurance if your testing is thorough. This chapter starts with explaining the difference between white box and black box. Both tests have their pros and cons, so it’s important to know what these are so that you can select the right sort of testing. I also explain the sorts of tests you can do, which range from traditional penetration testing to build reviews and vulnerability assessments. Penetration testing doesn’t just have to include ...

Get Information Security A Practical Guide: Bridging the Gap between IT and Management now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Information Security A Practical Guide: Bridging the Gap between IT and Management by Tom Mooney

CHAPTER 9: PENETRATION TESTING

Chapter Overview

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly