Penetration testing is a process used by organization to test their security scores of various software and IT infrastructures. This is basically done in such a way that the security analyst will act like attackers and start attacking the resources to find out its vulnerabilities. Reconnaissance, Scanning, Gaining Access, Maintaining Access and Reporting are the various phases involved in Penetration testing. There are many tools available in both Windows and Linux for performing different process and these tools are categorized under the following titles:
- Information Gathering
- Vulnerability Scanning
- Exploitation Tool
- Sniffing and Spoofing
- Gaining Access
- Maintaining Access
- Reverse Engineering
- Web Application Pentesting
- Wireless Attacks
- Reporting Tool
- Forensic Tool
