What is Penetration Testing?… And Tools

What is Penetration Testing? It’s the method of testing where the areas of weakness in software systems in terms of security are put to test to determine, if ‘weak-point’ is indeed one, that can be broken into or not. Performed for: Websites/Servers/Networks How is it performed? Step #1. It starts with a list of Vulnerabilities/potential problem areas that would cause a security breach for the systems. Step #2. If possible, this list of items has to be ranked in the order of priority/criticality Step #3. Devise penetration tests that would work (attack your system) from both within the network and …

Continue reading What is Penetration Testing?… And Tools

Five free pen-testing tools

Security assessment and deep testing don’t require a big budget. Some of most effective security tools are free, and are commonly used by professional consultants, private industry and government security practitioners. Here are a few to start with. For scanning in the first steps of a security assessment or pen test, Nmap and Nessus share the crown. Nmap is a simple, powerful and very well-reviewed scanner that one finds in the toolbox of any serious security consultant. Nmap and its Zenmap graphical interface are free and available at nmap.org for virtually any platform from Vista and OS X to AmigaOS, …

Continue reading Five free pen-testing tools