833-847-3280
Schedule a Call

Penetration Testing vs. Vulnerability Scanning

Penetration Testing

There are many differences between penetration testing and vulnerability scanning or assessments.

Based on NIST SP 800-115, Technical Guide to Information Security Testing and Assessment,

Penetration Testing is

“Security testing in which evaluators mimic real-world attacks in an attempt to identify ways to circumvent the security features of an application, system, or network. Penetration testing often involves issuing real attacks on real systems and data, using the same tools and techniques used by actual attackers. Most penetration tests involve looking for combinations of vulnerabilities on a single system or multiple systems that can be used to gain more access than could be achieved through a single vulnerability.”

This means that an engineer, or tester, is interacting and trying to exploit vulnerabilities. Discovery findings are located on the target systems or web application. It is human driven. The idea is that the engineer or tester will be acting like a “hacker.” NIST calls this Active Security Testing.
 
In addition, NIST 800-115 also states that Passive Security Testing is “Security testing that does not involve any direct interaction with the targets.” This represents vulnerability scans.  
 
An engineer or tester might plug certain information into the software. The rest of the engagement is the software scanning in-scope devices or applications for known vulnerabilities. This is an automated process. Consequently, some software also has a little check box that will allow for some vulnerabilities to be exploited. This method isn’t always accurate and contains limitations.
 
Moreover, software just doesn’t have the human wisdom that experienced testers or engineers have. They are looking for many vulnerabilities that could create a significant hole in your network.
For example, they are looking at things that aren’t based on business logic, such as default credentials.
 

What about vulnerability assessments?

The human element verifies that the vulnerabilities actually exist. Sometimes the scanning software produces a false positive. A tester or engineer verifies each finding to ensure you have a list of vulnerabilities based on current knowledge.
 
In short, each has it’s place but the differences should be clear. If you would like to learn more about these services, contact us today.

Latest Posts

A transparent image used for creating empty spaces in columns
Small Business Cyber Risk: What to Do When a CISO Isn’t in the Budget
Most small and medium-sized businesses don’t have a Chief Information Security Officer. They can’t justify the $150K-$250K salary for a full-time security executive when they’re a 10 or 50-person company still figuring out basic growth. But cybersecurity risk doesn’t care about your company’s size. Ransomware…
A transparent image used for creating empty spaces in columns
The $5K Pen Test Myth: Why Enterprise-Focused Vendors Don’t Understand SMBs
A competitor recently claimed on a webinar that any penetration test under $5,000 is “half-assed.” Let’s unpack why that statement is completely wrong and reveal a fundamental misunderstanding of the small and medium business market.   The Enterprise Mindset Problem Here’s what’s actually happening: many…
A transparent image used for creating empty spaces in columns
The Sales Tactics That Cost Cybersecurity Vendors Deals
Something needs to be said about how cybersecurity vendors sell their products. The industry has a sales problem. It’s annoying, and it’s actively costing vendors business. Customers are making purchasing decisions based not on product quality or features, but on which sales team is least…
A transparent image used for creating empty spaces in columns
Why IT and Cybersecurity Should Stay Separate (And Why That’s Actually Good News)
Here’s a conversation that happens in boardrooms everywhere: “Why do we need a separate cybersecurity team? Our IT department handles all our technology. Can’t they just… handle security too?” It sounds reasonable. IT manages your systems. Security protects your systems. Same systems, right? Why pay…
A transparent image used for creating empty spaces in columns
Be the Hero Your Clients Deserve: How Penetration Testing Helps You Protect Their Data
Your clients trust you with something that keeps them up at night: their data. Whether you’re running their cloud infrastructure, managing their network, developing their applications, or processing their transactions, you’re not just a vendor. You’re the one standing between their sensitive information and everyone…
A transparent image used for creating empty spaces in columns
Why MSPs Are Terrified of Pen Testers (And How to Fix It)
   Most MSPs are terrified to bring in pen testers. Let’s just say it out loud. You’ve spent years building trust with your clients. You’re their go-to for IT problems. They rely on you. They trust your judgment. And then someone suggests bringing in…
More Posts
contact

Our Team

This field is for validation purposes and should be left unchanged.
Name(Required)
quick links to

Our Services

  • Network Penetration Testing
    •
  • Web Application Penetration Testing
    •
  • API Testing
    •
  • Network Vulnerability Scanning
    •
  • Mobile Application Penetration Testing
    •
  • WiFi Testing
    •
  • Web Application Vulnerability Scanning
    •
  • Security Risk Assessments
    •
    call our security experts 833-847-3280

    833-847-3280

    X-twitter Facebook-f Google Linkedin-in Threads

    Careers

    On Load
    Where? .serviceMM
    What? Mega Menu: Services
    Call
    Visit

    833-847-3280

    201 E Pikes Peak Ave Suite 2025
    Colorado Springs, CO 80903