Penetration Testing White Papers

FREE MEMBERSHIP - Create your personalized Bitpipe Service!

Jun 20, 2013

IT Management > Systems Design and Development > Testing > Systems Testing >
Penetration Testing
ALSO CALLED: Red Team, Ethical Hackers, Ethical Hacking, Vulnerability Testing, Security Testing, Intrusion Testing, Red Teaming, Security Scans, White Hat Hackers, White Hats DEFINITION: White hat describes a hacker (or, if you prefer, cracker) who identifies a security weakness in a computer system or network but, instead of taking malicious advantage of it, exposes the weakness in a way that will allow the system's owners to fix the breach before it can be taken advantage by others (such as black hat hackers.) Methods of telling the owners about it range from a simple phone call … Definition continues below.
Penetration Testing White Papers (View All Report Types)
18 Matches

Solar Cells Manufacturer Gains Security Assurance sponsored by Dell SecureWorks UK WHITE PAPER: The clients of AZUR SPACE Solar Power frequently request verification by a security provider in advance of any product procurement. Find out what happened when they looked to Dell SecureWorks for their security needs. Posted: 21 Mar 2013 \| Published: 28 Feb 2013 TOPICS: Aerospace and Defense Industry \| Aerospace Systems \| Managed Security Services \| Managed Security Services Providers \| Penetration Testing \| Security Management \| Security Managers

Ten Tips for the Metrics-Minded Organization sponsored by Sensage, Inc. WHITE PAPER: Security professionals are well aware that metrics can improve security operations and reduce risks. However, some directions need to be in place in order for security metrics initiatives to be successful. Consult this resource to uncover the top ten tips for security metrics initiatives. Posted: 29 Aug 2012 \| Published: 29 Aug 2012 TOPICS: Data Security \| Metrics \| Operational Metrics (Systems) \| Operational Support Systems \| Penetration Testing \| Security \| Security Systems

Magic Quadrant for Static Application Security Testing sponsored by Veracode, Inc. WHITE PAPER: In this research, we analyze the evolution of the static application security testing market, and evaluate its vendors according to their business and technology vision, as well as their ability to execute against that vision in their products and services. Posted: 17 Feb 2011 \| Published: 17 Feb 2011 TOPICS: Application Security \| Cybersecurity \| Market Research \| Penetration Testing \| Source Code Control \| Vendor Selection

Global Security Report 2011 sponsored by Trustwave WHITE PAPER: In 2010, SpiderLabs performed more than 220 investigations worldwide. In 85% of the investigations, a system breach was confirmed. Of those entities in which a system breach was confirmed, 90% involved the actual theft of sensitive data, representing criminals’ effectiveness in extracting data once system access is obtained. Posted: 27 Jan 2011 \| Published: 26 Jan 2011 TOPICS: Application Security \| Crime \| Cybersecurity \| Email Security \| Malware \| Penetration Testing \| Security Audits \| Security Threats \| Wireless Security

Understanding Why Web Application Security is Critical to Business sponsored by Sirius Computer Solutions WHITE PAPER: This paper compiles clients’ frequently asked questions about Web application security. These questions are answered by security experts from Sirius and IBM. The goal is to help you understand the issues surrounding Web application security; so you can better prepare your organization for a security breach. Posted: 13 Oct 2009 \| Published: 01 Sep 2009 TOPICS: Firewall Appliances \| Firewall Management \| Firewall Server Hardware \| Firewall Server Software \| Penetration Testing \| Security Best Practices \| Security Threats \| Vulnerability Assessments \| Vulnerability Management \| Web Application Security \| Web Services Security

Web Application Security: Automated Scanning versus Manual Penetration Testing sponsored by Logicalis WHITE PAPER: This paper explains the two primary methods for discovering Web application vulnerabilities: using manual penetration testing and code review or using automated scanning tools and static analysis. Posted: 11 Dec 2008 \| Published: 11 Dec 2008 TOPICS: Customer Data Management \| Customer Privacy \| HTTP \| HTTPS \| Penetration Testing \| Security Threats \| Software \| Vulnerability Assessments \| Web Application Security

Acquire a global view of your organization's security state: the importance of security assessments sponsored by IBM Software Group WHITE PAPER: Security assessments from IBM can help find "point-in-time" or ongoing security gaps in data confidentiality, integrity and accessibility as well as prior breaches and budgetary justification for making necessary security investments. Posted: 09 Jan 2008 \| Published: 09 Jan 2008 TOPICS: Database Security \| Information Security \| Managed Security Services \| Managed Security Services Providers \| Network Security \| Penetration Testing \| Physical Security \| Risk Assessment \| Security Infrastructure \| Vulnerability Assessments

The importance of security assessments sponsored by IBM WHITE PAPER: This white paper helps you understand the variety of security assessment options that are available and provides the criteria for selecting a vendor that can help you meet your company?s security requirements. Posted: 06 Dec 2007 \| Published: 01 Apr 2007 TOPICS: Database Security \| Information Security \| Managed Security Services \| Managed Security Services Providers \| Network Security \| Penetration Testing \| Physical Security \| Risk Assessment \| Security Infrastructure \| Vulnerability Assessments

Simple Steps to Securing Your SSL VPN sponsored by SonicWALL WHITE PAPER: This expert eBook features a quiz that helps test your knowledge of IPsec vs. SSL VPNs and details additional resources that help you determine which technology best suits your organization's needs. Posted: 14 Nov 2007 \| Published: 01 Nov 2007 TOPICS: Internet Security \| IPSec \| IPSec VPN \| Network Security \| Network Traffic Analysis \| Penetration Testing \| SSL \| SSL VPN \| TLS \| Vulnerability Management

The Case for Application Security: How Real Is the Threat and What Are Your Options sponsored by Fortify Software WHITE PAPER: This white paper examines the current hacking landscape and details what you can do to prevent a security breach within your organization. Read this white paper today and learn about the pros and cons of various application security solutions. Posted: 24 Oct 2007 \| Published: 24 Oct 2007 TOPICS: Application Security \| Authentication \| Authorization \| Data Security \| Hackers \| Internet Security \| Network Security \| Penetration Testing \| Security Threats \| Source Code Control \| Vulnerability Management

The Top Six Risks of Employee Internet Use and How to Stop Them sponsored by St. Bernard Software WHITE PAPER: Learn the legal issues and security risks associated with unmanaged employee Internet use. This white paper discusses the security controls needed to mitigate risk, reduce threats and achieve compliance in the enterprise. Posted: 27 Sep 2007 \| Published: 27 Sep 2007 TOPICS: Employee Monitoring \| Enterprise Computing \| Internet Filtering \| Internet Monitoring Software \| Internet Security \| Penetration Testing \| Regulatory Compliance \| Risk Management \| Security Threats

Justifying Data Security: An Investment in Competitive Advantage sponsored by Websense, Inc. WHITE PAPER: For process improvement, regulatory compliance, and competitive advantage; information leak protection is a vital part of securing internal data. Automated solutions accelerate the effectiveness of security controls while maintaining regulatory compliance Posted: 06 Sep 2007 \| Published: 26 Aug 2007 TOPICS: Application Performance Management \| Application Security \| Data Security \| IT Infrastructure \| Penetration Testing \| Regulatory Compliance \| Risk Management \| Vulnerability Assessments

Metrics That Matter: Quantifying Software Security Risk sponsored by Fortify Software WHITE PAPER: Software security presents new measurement challenges: there are no established formulas for quantifying the security risk present in an application. This paper provides a set of metrics for ensuring an accurate view of software projects. Posted: 07 May 2007 \| Published: 01 Jan 2006 TOPICS: Application Life-Cycle Management \| Application Security \| Code Management \| Penetration Testing \| Secure Application Development \| Security Threats \| Software Development Life-Cycles \| Software Quality Assurance \| Software Viruses \| Vulnerability Management

The Path to a Secure Application: A Source Code Security Review Checklist sponsored by Ounce Labs, an IBM Company WHITE PAPER: Read this white paper to learn a checklist to find and eliminate the source coding errors and design flaws that expose data, threaten operations, and cost your organization time and money. Posted: 05 Feb 2007 \| Published: 01 Feb 2007 TOPICS: Application Life-Cycle Management \| Application Security \| Penetration Testing \| Secure Application Development \| Software Quality Assurance \| Software Testing \| Source Code Control \| Vulnerability Assessments

Automated Penetration Testing; Can IT Afford Not To? sponsored by Core Security Technologies WHITE PAPER: This paper contains an overview of penetration testing, a summary of vulnerabilities that can be revealed through penetration testing, and the business and technical benefits of performing penetration testing across your infrastructure. Posted: 18 Jan 2007 \| Published: 01 Jan 2007 TOPICS: Intrusion Detection \| Intrusion Detection Systems \| Intrusion Prevention Systems \| Penetration Testing \| Regulatory Compliance \| Risk Assessment \| Vulnerability Management

Secure at the Source: Implementing Source Code Vulnerability Testing in the Software Development Life Cycle sponsored by Ounce Labs, an IBM Company WHITE PAPER: Learn the best models for integrating source code vulnerability testing into the software testing development life-cycle (SDLC) and how to best merge security expertise with development resources. Posted: 20 Jul 2006 \| Published: 19 Jul 2006 TOPICS: Application Life-Cycle Management \| Application Security \| Java \| Penetration Testing \| Secure Application Development \| Software Development Life-Cycles \| Software Quality Assurance \| Software Testing \| Source Code Control

How to Successfully Automate the Functional Testing Process sponsored by Borland Software Corporation WHITE PAPER: This white paper provides practical insight into the lessons learned by those who have successfully automated the functional testing process. Posted: 24 May 2006 \| Published: 01 May 2006 TOPICS: Application Performance Management \| Debugging \| Integration Testing \| IT Best Practices \| Load Testing \| Network Analyzer Software \| Network Testing \| Penetration Testing \| ROI \| Software Development Methodologies \| Software Quality Assurance

Justification and ROI for Automated Penetration Testing sponsored by Core Security Technologies WHITE PAPER: This paper will help you justify the need for an automated penetration testing product and demonstrate the positive Return on Investment (ROI) that can be achieved. Posted: 19 Sep 2005 \| Published: 01 Sep 2005 TOPICS: Cybersecurity \| Healthcare Industry \| Mortgage Industry \| Penetration Testing \| ROI \| Vulnerability Assessments

18 Matches

PENETRATION TESTING DEFINITION (continued): … White hat describes a hacker (or, if you prefer, cracker) who identifies a security weakness in a computer system or network but, instead of taking malicious advantage of it, exposes the weakness in a way that will allow the system's owners to fix the breach before it can be taken advantage by others (such as black hat hackers.) Methods of telling the owners about it range from a simple phone call through sending an e-mail note to a Webmaster or administrator all the way to leaving an electronic "calling card" in the system that makes it obvious that security has been breached.While white hat hacking is a hobby for some, others provide their services for a fee. Thus, a white hat hacker may work as a consultant or be a permanent employee on a company's payroll. A good many white hat hackers are former black hat hackers.The term comes from old Western movies, where heros often wore white hats and the "bad guys" wore black hats.
Penetration Testing definition sponsored by SearchSecurity.com, powered by WhatIs.com an online computer dictionary

Browse by Report Type:
Penetration Testing White Papers | Penetration Testing Multimedia | Penetration Testing IT Downloads

TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines


Definitions: A B C D E F G H I J K L M N O P Q R S T U V W X Y Z Other
TechTarget Corporate Web Site \| Media Kits All Rights Reserved, Copyright 2000 - 2013, TechTarget \| Read our Privacy Statement