Vulnerability Testing Tools

admin

8 years ago

Table of Contents

Overview

Vulnerability testing is a software approach to test a system and evaluate the risks in the system function to measure mitigate and prevent risks from becoming reality.

In this tutorial, we will learn about types of vulnerability testing and different vulnerability testing tools.

Types of Vulnerability Testing

There are several types of vulnerability testing, such as:

Penetration Testing
Network vulnerability testing
Web application vulnerability testing
Mobile application vulnerability testing
OS vulnerability testing
Database vulnerability testing
Wireless vulnerability testing
Physical security vulnerability testing
Social Engineering vulnerability testing

Penetration Testing

Penetration Testing is a type of testing that involves simulating a real-world attack on a system to identify potential vulnerabilities that could be exploited by attackers.

Network vulnerability testing

Network vulnerability testing is focused on identifying vulnerabilities in the network infrastructure, such as firewalls, routers, and switches.

Web application vulnerability testing

Web application vulnerability testing is used to identify vulnerabilities in web applications, including SQL injection, cross-site scripting (XSS), and others.

Mobile application vulnerability testing

Mobile application vulnerability testing is focused on identifying vulnerabilities in mobile applications, such as unauthorized data access, insecure data storage, and others.

OS vulnerability testing

Operating system vulnerability testing is focused on identifying vulnerabilities in operating systems, such as Windows or Linux, and the associated services and applications.

Database vulnerability testing

Database vulnerability testing is focused on identifying vulnerabilities in backend databases, such as MySQL database, Oracle, MSSQL servers, and NoSQL databases like Cassandra, MongoDB, etc.

Wireless network vulnerability testing

Wireless network vulnerability testing is focused on identifying vulnerabilities in wireless networks, such as Wi-Fi, Bluetooth, and others.

Physical security vulnerability testing

Physical security testing is focused on identifying vulnerabilities in physical security measures, such as access control systems, surveillance systems, and others.

Social engineering vulnerability testing

Social engineering vulnerability testing is focused on identifying vulnerabilities in human behavior, such as phishing attacks, pretexting, and others.

Vulnerability Testing Tools

Uniscan

Uniscan is a free and open-source web application security scanner for Linux operating systems. It is designed to scan web applications for potential security vulnerabilities such as SQL injection, Cross-Site Scripting (XSS), etc

More information:

https://en.wikipedia.org/wiki/Vulnerability_assessment