14 Software Penetration Testing

Penetration testing, often called “pen testing,” is a cybersecurity practice that involves simulating real-world cyberattacks on software systems, networks, and applications to identify vulnerabilities and weaknesses that malicious actors might exploit. The primary goal of penetration testing is to assess the security posture of a system and help organizations strengthen their defenses by addressing any identified vulnerabilities.

In this chapter, we’re going to cover penetration testing by looking at the following main topics:

Types of tests
Phases
Tools
Example of an enterprise penetration test report

By the end of this chapter, you will have a good understanding of the purpose, types, and phases of penetration ...

Get Security-Driven Software Development now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Security-Driven Software Development by Aspen Olmsted

14

Software Penetration Testing

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly