I have been involved in computer security and security testing for a while and I think it’s time to talk about some aspects of it that get ignored, mostly for the worse. Let me just get this out of the way: security testing (or pentesting, if you like) and testing are very closely related.
The Testing Pyramid
What’s really good about security testingĀ being so close to testingĀ is that you can apply the standard, well-know and widely used techniques from testing to the relatively new field of security testing. First of all, this chart:
Continue reading Testing and pentesting, a road to effectiveness