9 Sep 2022

What Is Penetration Testing?

Coding Cyber Security

What is Penetration Testing?

In simple terms, it’s a cyberattack that an ethical hacker performs to evaluate the security of your computer system. There are two types of penetration testing: white-box testing and black-box testing.

cyber security threat gif | Stemettes Zine

What is the difference between white-box and black-box testing?

White-box testing: This is when the ethical hacker has full access to the organisation’s network and system. They are allowed to know about the employers’ personal information (for example, what my dog’s name is). They are like an insider, like an employer in the company, they know about everything. It can help to save time and reduce the overall cost of hiring an ethical hacker.

Black-box testing: This is when the ethical hacker does not have access to any personal information. They cyberattack the organisation as an outsider, so it can be harder, as they may not be able to easily guess passwords (for example, a password with my dog’s name would be harder to guess, as the ethical hacker does not have access to that information). This relies on analysis of currently running programs with the target network, so it determines the vulnerabilities in the system that can be exploited from outside the network.

password? whatever gif | Stemettes Zine

Why is it important?

  • To identify security flaws, so that companies can resolve them, or implement appropriate controls
  • To test new software and systems for bugs
  • To ensure that your existing security controls are effective

How to become a penetration tester:

  • Make sure that you are interested in cybersecurity
  • Have knowledge of different computer languages (for example: HTML, Python, Javascript)
  • Do a degree in Computer Science, or something related
  • Take a course in penetration testing

Overall, penetration testing is an upcoming career, and very important as our world becomes online more.

This article was written by Stemettes Work Experience, Rhea Shah.

Coding Cyber Security
Did you enjoy this article? Click on a star to rate it!
Upcoming Events
Parent, guardian, teacher or volunteer?

The Stemettes Zine is a curated space tailored specifically to Stemettes but we have plenty of content and updates for you folks too. Sign up to receive the Stemettes newsletter and we’ll keep you updated with the latest from Stemettes HQ including events, activities, resources and fundraising activities.