O que é PenTest
• Pen testing is a process for testing a system, network, web
application, facility or some other resource in order to find as many
vulnerabilities and configuration issues as possible within the time
allotted. Pen testers then exploit those vulnerabilities to determine
the risk of the vulnerabilities.
• Pen testers aren't seeking to discover new vulnerabilities -- zero
days. They aim to find already known but unpatched system
vulnerabilities.
• During a typical pen test, pen testers aim to find a version of installed
software that is known to be vulnerable and then exploit that
vulnerability. This process continues: find other vulnerabilities and
exploit them, combining the attacks in order to reach the end goal.
26/06/2021