Skip to main content Skip to main navigation menu Skip to site footer
Bulletin of Abai KazNPU. Series of Physical and mathematical sciences

CONDUCTING PENETRATION TESTING USING THE WHITE BOX METHOD

Published June 2022

259

173

А.А. Зиро+
КазНУ им. аль-Фараби
D Tursumbayev +
Satbayev University, г. Алматы, Казахстан
Zh Zhaibergenova+
Astana IT University, Нұр-Сұлтан қ, Қазақстан
Sh Toibayeva+
Ғұмарбек Даукеев атындағы Алматы Энергетика және Байланыс Университетi, Алматы қ, Қазақстан
КазНУ им. аль-Фараби
Satbayev University, г. Алматы, Казахстан
Astana IT University, Нұр-Сұлтан қ, Қазақстан
Ғұмарбек Даукеев атындағы Алматы Энергетика және Байланыс Университетi, Алматы қ, Қазақстан
Abstract

Penetration testing is an opportunity to assess the level of protection of an information system from illegal penetration into it from public networks. The essence of the test is to identify the flaws in the security system by looking at it through the eyes of a cybercriminal who is interested in gaining unauthorized access to the information system. When conducting a penetration test, depending on the scenario, specialists may have a different amount of initial data about the studied information system. From the complete lack of information about the hardware and software solutions used to ensure information security, to the availability of all information about its structure and organization. The SecOps methodology has been investigated, which helps the information security auditor to solve security problems by automating processes in the organization and his temporary detection of vulnerabilities in it.

pdf (Қазақ)
Language

Қазақ

How to Cite

[1]
Зиро, А., Tursumbayev Д., Zhaibergenova Ж. and Toibayeva Ш. 2022. CONDUCTING PENETRATION TESTING USING THE WHITE BOX METHOD. Bulletin of Abai KazNPU. Series of Physical and mathematical sciences. 78, 2 (Jun. 2022), 118–125. DOI:https://doi.org/10.51889/2022-2.1728-7901.15.