查看文章

In information technology world security is among the most important factors of our life. The evolutions of Computer, Internet and Web have made peoples more dependent upon computer network services than ever. There has been a challenge of providing a secure environment; an effective network security strategy that helps identifying threats and then selecting the most effective sets of tools to mitigate them in such a way that any organization will be able to reduce the likelihood of incidents and resultant data loss. The main objective of penetration testing is to effectively call to low or high potential vulnerabilities existing in the system or network, and then come up with realistic solutions to address such weaknesses; thus, enhancing the security of the system or network as a whole. This paper contains a review of the methodology used in the different phases of network penetration testing. An advanced penetration testing technique has also been discussed that addresses the limitations of current techniques.