Сравнение на методи
Прегледайте избраните методи един до друг; редовете с разлики са откроени.
| Методология за тестване за проникване× | Система за откриване на прониквания× | |
|---|---|---|
| Област | Криптография | Криптография |
| Семейство | Process / pipeline | Process / pipeline |
| Година на възникване≠ | 2008 | 1987 |
| Създател≠ | National Institute of Standards and Technology (NIST), OWASP | Dorothy Denning |
| Тип≠ | Authorized security exploit and assessment | Security monitoring and anomaly detection |
| Основополагащ източник≠ | National Institute of Standards and Technology (2008). Penetration Testing and Security Testing. NIST Special Publication 800-115. link ↗ | Denning, D. E. (1987). An intrusion-detection model. IEEE Transactions on Software Engineering, 13(2), 222–232. DOI ↗ |
| Други названия | Pen Testing, Ethical Hacking, Security Testing | IDS, Network Intrusion Detection, Anomaly Detection System |
| Свързани | 3 | 3 |
| Резюме≠ | Penetration testing is an authorized, controlled simulated attack on systems, networks, and applications to evaluate their security defenses. Unlike vulnerability assessment (which identifies weaknesses), penetration testing actively exploits vulnerabilities to demonstrate real-world impact, confirm exploitability, and assess an organization's incident response capabilities. | An Intrusion Detection System (IDS) is a security tool that monitors network traffic and system activity to identify unauthorized access attempts, malware infections, and policy violations. Introduced by Dorothy Denning in 1987, IDS employs two main detection paradigms: signature-based (matching known attack patterns) and anomaly-based (identifying deviations from normal behavior). |
| ScholarGateНабор от данни ↗ |
|
|