White Box
Testing teams are given design overviews and technical documentation to aid them in their attack.Black Box
Testing teams are given no inside information about a system.Double Blind Testing
Testing teams aren't given inside technical information and operational teams aren't told that a penetration test is being conducted. Designed to test detection tools and the readiness of operations teams.Automation
Tools that automatically execute exploit code for known vulnerabilities. Often used in conjunction with a manual test.Manual
Manual attacks by IT professionals who have knowledge of hacking typically using vulnerability scanners and other automated tools as a starting point.Contests & Events
Critical systems may benefit from broad and intensive attacks to rapidly harden their design and implementation. This can be achieved with contests and events that invite a large number of individuals to attack a system.Overview: Penetration Test | ||
Definition | A type of cybersecurity test that simulates attacks against systems or devices to find vulnerabilities. | |
Type | ||
Related Concepts | Penetration Test DefinitionHardening |