Compară metode

Examinează metodele selectate una lângă alta; rândurile care diferă sunt evidențiate.

	Evaluarea vulnerabilităților ×	Metodologie de testare a penetrării ×
Domeniu	Criptografie	Criptografie
Familie	Process / pipeline	Process / pipeline
Anul apariției≠	2002	2008
Autorul original≠	National Institute of Standards and Technology (NIST)	National Institute of Standards and Technology (NIST), OWASP
Tip≠	Vulnerability identification and prioritization	Authorized security exploit and assessment
Sursa seminală≠	National Institute of Standards and Technology (2012). Guide for Conducting Security Patch Management Activities. NIST Special Publication 800-40 Revision 3. link ↗	National Institute of Standards and Technology (2008). Penetration Testing and Security Testing. NIST Special Publication 800-115. link ↗
Denumiri alternative	Vulnerability Scanning, Security Assessment, Risk Assessment	Pen Testing, Ethical Hacking, Security Testing
Înrudite	3	3
Rezumat≠	Vulnerability assessment is a systematic process of identifying, quantifying, and prioritizing security weaknesses in systems, networks, and applications. Using automated scanning tools and manual techniques, organizations discover unpatched software, misconfigurations, weak cryptographic practices, and other exposures that attackers could exploit.	Penetration testing is an authorized, controlled simulated attack on systems, networks, and applications to evaluate their security defenses. Unlike vulnerability assessment (which identifies weaknesses), penetration testing actively exploits vulnerabilities to demonstrate real-world impact, confirm exploitability, and assess an organization's incident response capabilities.
ScholarGateSet de date ↗	v1 3 Surse PUBLISHED	v1 3 Surse PUBLISHED

Mergi la căutare → Descarcă prezentarea