A penetration test, occasionally pentest, is a method of evaluating the computer security of a computer system or network by simulating an attack from malicious outsiders (who do not have an authorized means of accessing the organization’s systems) and malicious insiders (who have some level of authorized access).[1] The process involves an active analysis of the system for any potential vulnerabilities that could result from poor or improper system configuration, both known and unknown hardware or software flaws, or operational weaknesses in process or technical countermeasures

Penetration Testing Phases (OISSG Methodology)
Penetration Testing Benefits
  • Planning and Preparation
  • Assessment
  • Reporting, Cleanup and Destroy Evidences
  • Protect Public Relationships And Brand Issues
  • Manage Risk Properly
  • Increase Business Continuity
  • Minimize Client-side Attacks
  • Protect Clients, Partners And Third Parties
  • Comply With Regulation or Security Certification
  • Evaluate Security Investment