Penetration Test
Penetration testing is the best and most accurate method to measure the security of a software, computer or network, which is done by simulating the attacks of a real attacker (hacker). In this method, all the software, systems and services installed on it are tested to find security problems and then take action to fix them.
Penetration testing is done in different ways, the main difference of which is the difference in the amount of information the tester has about the target system and also the amount of his access to that system.
Types of vulnerability assessment (penetration testing) and security assessment
- Black box penetration testing: Black box penetration testing is a method that is performed by the tester without having any prior information about the system.
- White box penetration testing: White box penetration testing or transparent testing is a method in which the tester has full system specifications.
- Gray box penetration testing: Meanwhile, there is another method in which only a part of the information is provided to the tester, and it is known as the gray box test.
By conducting a transparent test, the system can be tested more accurately and for more cases, if by conducting a black box test, all existing holes may not be investigated. Therefore, when security plays a key role, it is necessary to conduct a transparent test.
Penetration testing services of APA Center of Razi University
Apay Razi Center can provide valuable services to your organization by relying on experienced and specialized experts in the fields of vulnerability assessment (penetration testing) and security assessment, security, programming and network, as well as by following the methodologies and standards of this field. In this center, all types of permeability tests - white, black, gray - are offered to the applicants according to the OWASP ASVS standard. This center, in cooperation with other APA centers and competent authorities, including Saafta company, examines and issues security certificates.
