Penetration testing
Penetration testing (or pen testing) is a security exercise where a cyber-security expert attempts to find and exploit vulnerabilities in a computer system. The purpose of this simulated attack is to identify any weak spots in a system's defenses which attackers could take advantage of.
PenTesting Tools:
1. Information Collection
- Open source scanning
- Network scan
- Enumeration
- Vulnerability assessment
- Social engineering
2. Network and system compromise
- Direct hacking of the system
- Network Sniffing
- Malware attacks
- DOS,DDOS attacks
- Wi-Fi and LAN Hacking
3. Compromising Platforms
- Hacking web servers and web applications
- Avoiding IDS firewalls and Honeypots
- SQL injection