digg

Facebook Connect Join Digg About

Penetration Testing vs Vulnerability Assessment

darknet.org.uk A good explanation of the differences between the two, many managers think Penetration Testing sounds more exciting, but actually in the majority of cases it's a Vulnerability Assessment that's carried out.

Who dugg this?

Digg DudeWhat is Digg?

Digg is a place for people to discover and share content from anywhere on the web. Digg surfaces the best stuff as submitted and voted on by the community. Take the Tour to learn more.

2 Comments

show profanity settings
expand all
  • ITDefPat, on 10/12/2007, -0/+1agreed. Risk is result of threats, vulnerability and countermeasures. vulnerabilty is to determine overall problems. Pen test sort of check to validate threats and vulnerability (i.e are they real). also VA is assessment. Pen is testing. two difrerrent methodologies.
  • jfinke, on 10/12/2007, -0/+0Not a bad little article. One thing that he fails to mention (or I just missed it) was that penetration testing is usually a primary technical assessment. A vulnerability assessment also tends to have quite a bit more involved including risk levels and documentation review.

  • Add a Comment

    Login or register to comment!
    Or, sign-in super fast with your Facebook account ...


© Digg Inc. 2009 — Content created and posted by Digg users is dedicated to the public domain | Terms of Use Updated | Privacy Policy
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.