Comparative Study on Penetration Testing Methods

Authors

  • Lakshyajeet Solanki
  • Anil Kumar

Abstract

Present research work is to determine the best available methods for penetration testing. Basically, uses the methods which are Web application security test, Network service test, and client-side test. Web Application Penetration Testing method offsets the classes of loopholes contour in the unlocked Web Application Security Project. It has two substantial components, namely Vulnerability Assessment (VA) and Penetration Testing (PT). Various automated tools and human testing techniques are used in vulnerability assessment to determine the security posture of the quarry system. This process of VAPT assists in evaluating the fruitfulness of the security estimates that are existing on the target apparatus. It is crucial to comprehend how security testing approaches and technologies have changed throughout time. So, the main objective of this study is to provide the comparison between the available methods of pen-testing and also provide the advancement information regarding the collection of data about the techniques.

References

Sugandh Shah, Mehtre BM. An overview of vulnerability assessment and penetration testing techniques. J Comput Virol Hack Tech. 2014 Feb; 11(1): 27–49. DOI 10.1007/s11416-014-0231-x.

Dalalana Bertoglio D, Zorzo AF. Overview and open issues on penetration test. J Brazilian Comput Soc. 2017 Dec; 23(1): 1–6.

Arkin B, Stender S, McGraw G. Software penetration testing. IEEE Secur Priv. 2005 Feb 14; 3(1): 84–87.

Kallepalli C, Tian J. Measuring and modeling usage and reliability for statistical web testing. IEEE Trans Softw Eng. 2001 Nov; 27(11): 1023–1036.

Halfond WG, Choudhary SR, Orso A. Improving penetration testing through static and dynamic analysis. Softw Test Verification Reliab. 2011 Sep; 21(3): 195–214.

Al Shebli HM, Beheshti BD. A study on penetration testing process and tools. In 2018 IEEE Long Island Systems, Applications and Technology Conference (LISAT). 2018 May 4; 1–7.

Alisherov F, Sattarova F. Methodology for penetration testing. Int J Grid Distrib Comput. 2009; 2(2): 43–50.

Internet Archive way back machine. Client Side Testing. [Online]. Available from s http://web.archive.org/web/20211024231912/https://www.split.io/glossary/client-side-testing/

Additional Files

Published

09/17/2022

How to Cite

Solanki, L., & Kumar, A. (2022). Comparative Study on Penetration Testing Methods. JOURNAL OF WEB ENGINEERING &Amp; TECHNOLOGY, 9(2), 6–13. Retrieved from https://stmcomputers.stmjournals.com/index.php/JoWET/article/view/343

Issue

Vol. 9 No. 2 (2022): Journal of Web Engineering & Technology

Section

Review Article