Dynamic Security Testing
- Tags
- security
An approach to test computer software security by directly having an automated program emulate an attacker interacting with the system.
Might:
- Destroy/corrupt your database (by testing SQL injections)
- Violate compliance policies (granting access to data you shouldn't see).
This approach [see page 9, requires]:
- IT department approval
- Dedicated test systems and infrastructure
- Necessary expertise