Penetration testing ("pen testing") can be broadly defined as a specific test at a defined target. In terms of cyber security, it is often thought of as a kind of 'controlled hacking', whereby a tester seeks to find security vulnerabilities in the system they are testing.
Benefits of Penetration Testing
ECSC can test your internal and external networks, and also particular applications, to find security vulnerabilities that could allow attackers to gain network access from the Internet, acquire administration login credentials, or extract confidential information such as credit card details.
The vulnerabilities identified by a penetration test enable you to see the weaknesses in your organisation and target your resources accordingly. This could help to prevent a breach in the future. The outcomes from the test may also help to provide a more general overview of your information security posture.
When should I carry out Penetration Testing?
Testing should be carried out regularly to ensure your network and syst