方法对比
并排查看您选择的方法;存在差异的行会高亮显示。
| 渗透测试方法论× | 入侵检测系统× | |
|---|---|---|
| 领域 | 密码学 | 密码学 |
| 方法族 | Process / pipeline | Process / pipeline |
| 起源年份≠ | 2008 | 1987 |
| 提出者≠ | National Institute of Standards and Technology (NIST), OWASP | Dorothy Denning |
| 类型≠ | Authorized security exploit and assessment | Security monitoring and anomaly detection |
| 开创性文献≠ | National Institute of Standards and Technology (2008). Penetration Testing and Security Testing. NIST Special Publication 800-115. link ↗ | Denning, D. E. (1987). An intrusion-detection model. IEEE Transactions on Software Engineering, 13(2), 222–232. DOI ↗ |
| 别名 | Pen Testing, Ethical Hacking, Security Testing | IDS, Network Intrusion Detection, Anomaly Detection System |
| 相关 | 3 | 3 |
| 摘要≠ | Penetration testing is an authorized, controlled simulated attack on systems, networks, and applications to evaluate their security defenses. Unlike vulnerability assessment (which identifies weaknesses), penetration testing actively exploits vulnerabilities to demonstrate real-world impact, confirm exploitability, and assess an organization's incident response capabilities. | An Intrusion Detection System (IDS) is a security tool that monitors network traffic and system activity to identify unauthorized access attempts, malware infections, and policy violations. Introduced by Dorothy Denning in 1987, IDS employs two main detection paradigms: signature-based (matching known attack patterns) and anomaly-based (identifying deviations from normal behavior). |
| ScholarGate数据集 ↗ |
|
|