Penetration Testing (OBJ 5.5)

Penetration testing, also referred to as pentesting or ethical hacking, is a simulated cyber attack conducted to assess a computer system for exploitable vulnerabilities.
The goal is to evaluate systems for potential weaknesses that could be liable to exploitation by an attacker.
Discussion of various types of penetration testing will include:
- Physical Penetration Testing
- Offensive Penetration Testing
- Defensive Penetration Testing
- Integrated Penetration Testing (also known as Purple Teaming)

Focuses on examining an organization's physical security measures such as:
- Locks
- Access cards
- Security cameras
- Other physical security measures
Examples of techniques:
- Tailgating: Following an authorized employee without detection into secure areas.
- Cloning unauthorized access cards to gain entry.
Objective: Identifying vulnerabilities in physical security and recommending enhancements to increase security levels.
Benefits include:
- Identifying physical vulnerabilities
- Improving security awareness among employees
- Preventing unauthorized access to sensitive areas
Importance of improving security awareness focuses on educating employees to follow best practices, such as:
- Not allowing tailgating through secure doors.
- Addressing physical vulnerabilities thus reducing risks associated with unauthorized access.

Also known as Red Teaming.
Involves proactively seeking out vulnerabilities and exploiting them to mimic real-world cyber attacks.
Characteristics:
- Proactive and aggressive approach.
- Aim to uncover as many vulnerabilities as possible.
Example scenario: A Red Teamer exploits a known software vulnerability to gain unauthorized access to a computer network.
The identified vulnerabilities are reported to the organization for fixing before they can be exploited by real attackers.
Aims include:
- Simulating real-world attacks to improve defense mechanisms.
- Securing funding for cybersecurity investments by demonstrating the organization's vulnerabilities through tangible data.

Also regarded as Blue Teaming.
A reactive approach aimed at:
- Strengthening systems.
- Detecting and responding to attacks.
- Enhancing incident response times.
Activity example: Monitoring for unusual network activity as a sign of a potential attack.
Upon attack detection, the tester mitigates damage while strengthening defenses to prevent future breaches.
Benefits include:
- Improving incident response times to minimize attack damage.
- Strengthening systems by continuous monitoring for attack signs.
- Enhancing detection capabilities for quicker, more effective responses to future attacks.

Combines both offensive and defensive testing methods into a singular engagement.
Known as Purple Teaming, it involves collaboration between:
- Red Team (conducts offensive actions).
- Blue Team (conducts defensive measures).
Process:
- Red Team may simulate an attack while the Blue Team attempts to detect and counter it.
- If the Blue Team detects the attack, feedback is given to the Red Team for advanced tactics.
- If undetected, the Red Team provides insights on improving detection capabilities post-exercise.
Aim:
- Facilitate knowledge sharing and skill enhancement between teams.
- Conduct comprehensive security assessments to evaluate overall cybersecurity resilience.

Penetration testing is vital for maintaining robust cybersecurity frameworks in organizations.
Types include:
- Physical Testing: Secures physical structures.
- Offensive Testing: Actively uncovers vulnerabilities.
- Defensive Testing: Strengthens response strategies and systems.
- Integrated Testing: Merges proactive and reactive strategies for enhanced security.
The core objective is to identify and rectify vulnerabilities before malicious actors exploit them.
Overall, penetration tests are critical components of any cybersecurity strategy for organizations.