What are the components of a security evaluation?

Home / Hacking, News, Security / What are the components of a security evaluation?

September 12, 2008 PlanetCreator 0 Comments 0 tags

Any security evaluation involves three components:

* Preparation: In this phase, a formal contract is signed between an ethical hacker and the authority of the organization that contains a non-disclosure clause as well as a legal clause to protect the ethical hacker against any prosecution that he may face during the conduct phase. The contract also outlines the infrastructure perimeter, evaluation activities, time schedules, and resources available to him.
* Conduct: In this phase, the evaluation technical report is prepared based on testing potential vulnerabilities.
* Conclusion: In this phase, the results of the evaluation are communicated to the organization and corrective advice/action, if needed, is taken.

[webapps] Casdoor 1.901.0 - Cross-Site Request Forgery (CSRF)
on May 6, 2025 at 12:00 am
Casdoor 1.901.0 - Cross-Site Request Forgery (CSRF)
[webapps] Grokability Snipe-IT 8.0.4 - Insecure Direct Object Reference (IDOR)
on May 6, 2025 at 12:00 am
Grokability Snipe-IT 8.0.4 - Insecure Direct Object Reference (IDOR)
[webapps] ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)
on May 6, 2025 at 12:00 am
ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)
[local] Microsoft Windows - XRM-MS File NTLM Information Disclosure Spoofing
on May 1, 2025 at 12:00 am
Microsoft Windows - XRM-MS File NTLM Information Disclosure Spoofing
[local] Daikin Security Gateway 14 - Remote Password Reset
on May 1, 2025 at 12:00 am
Daikin Security Gateway 14 - Remote Password Reset

What are the components of a security evaluation?

Explore More

Password breaking service (Stolen password recovery)

About WPA & WPA2

Hacker Must Be Knowing