Professional Testing Coverage Vs. Script

1819 Words8 Pages
With the constant threat of increased attacks on networked systems, there is a pressing need to keep up vulnerability testing. Many times network professionals only patch systems and make sure that they are up to date on antivirus software and feel that is adequate, when in actuality it is not. By understanding professional testing coverage vs. script kiddies, recognizing new zero day vulnerabilities and understanding Black/White/Grey Box assessments, we can help to comprehend why vulnerability testing is not only advised, but perhaps the best way to move forward when analyzing our systems against greater disrupting future attacks. Professional testing coverage is the process of running vulnerability assessments in order to determine…show more content…
While this would take some time (maybe a few days to weeks), that is nothing compared to the amount of time that script kiddies are hard at work. Script kiddies are defined as an unskilled individual who uses scripts or programs developed by others to attack computer systems and networks, and deface websites. It is generally assumed that script kiddies are juveniles who lack the ability to write sophisticated programming programs or exploits on their own, and that their objective is to try to impress their friends or gain credit in computer-enthusiast communities (Script Kiddie, 2015). By understanding that script kiddies generally don’t have technical skills to create tools to hack, rather are just pointing those tools created by hackers, makes them far more ready to attack at greater numbers, as it doesn’t take particular skill sets in order to launch these attacks. They are able to take the tools that are provided and launch them from as many machines that they either infect or manually launch, and can pass these harmful tools to others with even less technical skill to do the same. They are a low maintenance “human virus” of sorts that can launch attacks on systems 24 hours a day, 7 days a week. On the contrary, currently most professional testing coverage will most likely be run either when a problem is present, or on a yearly basis (if they
Get Access