Many times we forgot to take output from many automated tools or Manual testing, we generally worked on raw data, The data which we have to arrange in way that client can understand risk rating of respective target. It is Tester’s skill to represent highly confidential data in-front of client.
Before going to VAPT, we must have to know some criteria behind information Security. Every one have different point of view to explore their knowledge on any information Security topic, Here is some summary question that surely by searching answer of those, can create your own documentary !! wow..
General Questions on Information Security:-
What is the history of hacking ?
why you want to know history of hacking, then go ahead and discover future of hacking 😉 ?
Motivation behind hacking:-
What is your purpose of hacking ? for money, profit, political view, competitive strategy, attitude,
personal grievance, curiosity, mischief, attract attention, credit ?
Optional Question on hacking:-
what is your point of view about hacking ?
A). Easy B). Hard C). neither easy nor hard D). Depends E). Not Applicable
Actual Terms in Ethical hacking:-
What is Vulnerability ?
What is Threats ?
What is Risk Management ?
What is IT Security Audit ?
What is LAW for ethical hacking in your country/state ?
What are the types of security test ?
What is Vulnerability Assessment ?
What is Penetration Testing ?
what is White Box and Black Box Testing ?
What is “Red Teams” ?
Actual Methodology of Testing:-
What is Testing Methodology ?
To be continued…