Abstract
Penetration testing is an art. You can learn a lot of techniques and understand all of the tools, but the reality is that software is complex, especially when you start putting a lot of software systems together. It’s that complexity that means that there is no one-size-fits-all solution when it comes to finding ways to get into systems. An attack that may work against one Web server may not work for the same Web server running on a different system. Sometimes, you can try a particular attack a number of times without success before it suddenly starts working and you find a way to break into the system. A skilled and successful penetration tester has not only the technical skills necessary to run the tools and understand what is happening, but also the creativity necessary to try different approaches.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsAuthor information
Authors and Affiliations
Rights and permissions
Copyright information
© 2016 Ric Messier
About this chapter
Cite this chapter
Messier, R. (2016). What Is Penetration Testing?. In: Penetration Testing Basics. Apress, Berkeley, CA. https://doi.org/10.1007/978-1-4842-1857-0_1
Download citation
DOI: https://doi.org/10.1007/978-1-4842-1857-0_1
Published:
Publisher Name: Apress, Berkeley, CA
Print ISBN: 978-1-4842-1856-3
Online ISBN: 978-1-4842-1857-0
eBook Packages: Professional and Applied ComputingProfessional and Applied Computing (R0)Apress Access Books