<br><br>Penetration test (jarg. Pentest) Is a method for assessing the security of information systems or by means of simulating an attacker. The method includes an active investigation of the system for vulnerabilities that can the target system to malfunction, or a complete denial of service. The research is conducted from the perspective of a potential attacker and may include active exploitation of system vulnerabilities. The result of the work is a report containing all the found security vulnerabilities, and may also contain advice on how to eliminate them. The purpose of penetration testing is to assess the feasibility of penetration testing and to predict the economic loss resulting from a successful attack. Penetration testing is part of a security audit. The person who performs the penetration test is called pentester…<br>Open and closed systems<br>Penetration testing can be based on several different techniques. The main differences are the availability of information about the system under study. When checking closed systems (black box systems), the attacker has no initial information about the structure of the attacked target. The initial task of this type of check is to collect the necessary information about the location of the target system and its infrastructure. In addition to closed systems, there are open (full information about the target system is available) and semi-closed (only partial information is available).<br>Target systems<br>Target systems include information systems with access from the Internet. Penetration testing should be out prior to launching the target system into mass use. This provides a certain level of assurance that any attacker will not be able to harm, direct or indirect, the operation of the system under investigation.<br>