Penetration testing is an opportunity to assess the level of protection of an information system from illegal penetration into it from public networks. The essence of the test is to identify the flaws in the security system by looking at it through the eyes of a cybercriminal who is interested in gaining unauthorized access to the information system. When conducting a penetration test, depending on the scenario, specialists may have a different amount of initial data about the studied information system. From the complete lack of information about the hardware and software solutions used to ensure information security, to the availability of all information about its structure and organization. The SecOps methodology has been investigated, which helps the information security auditor to solve security problems by automating processes in the organization and his temporary detection of vulnerabilities in it.
CONDUCTING PENETRATION TESTING USING THE WHITE BOX METHOD
Published June 2022
259
173
Abstract
Language
Қазақ
How to Cite
[1]
Зиро, А., Tursumbayev Д., Zhaibergenova Ж. and Toibayeva Ш. 2022. CONDUCTING PENETRATION TESTING USING THE WHITE BOX METHOD. Bulletin of Abai KazNPU. Series of Physical and mathematical sciences. 78, 2 (Jun. 2022), 118–125. DOI:https://doi.org/10.51889/2022-2.1728-7901.15.