• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
Craig Hays

Craig Hays

  • Cybersecurity
  • Principles
  • Newsletter
  • Learn Cyber Security
    • Hacking and Defending User Accounts
    • Learning Guides
  • Contact
  • Show Search
Hide Search
You are here: Home / Archives for vulnerability testing

vulnerability testing

How to Define Vulnerability Testing Scope

August 3, 2019 By Craig Hays Leave a Comment

Reading Time: 6 minutes

When it comes to vulnerability testing, what should be in scope? In my view, that’s a really easy question to answer.

Everything.

Everything connected to your organisation’s network or using your organisation’s resources, including in the cloud, are in scope. The weighting of vulnerability findings will take into consideration their physical location as well as the data they hold and the services they provide. This might also change the frequency of vulnerability tests you run against them. Unless we include it in scope we’ll never know what risk it presents to us.

Focus Areas

  1. Networked devices
  2. Cloud Services
  3. Mobile devices (smartphones, tablets, etc.)
[Read more…] about How to Define Vulnerability Testing Scope

Primary Sidebar

Newsletter

Want to get smarter about cyber security? Join my growing list of newsletter readers for exclusive news, reviews, how-tos, and more.

· © Craig Hays, 2006–2023 ·

  • Phishing