8MONITORING, LOGS, AND ALERTS

image

A paradox exists for penetration testers in that we are frequently trying to evade detection while simultaneously hoping the defenders stop us in our tracks. An offensive security professional’s job is not only to find and explain vulnerabilities in our clients’ systems but also to make those charged with monitoring and securing the enterprise better at what they do. Penetration tests can help determine where the gaps are in defenders’ rules and alerts and also keep defenders sharp and well-practiced in case a real adversary arrives.

This final chapter is a departure from the pentest techniques and tools covered in ...

Get Pentesting Azure Applications now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.