18 lines
774 B
XML
18 lines
774 B
XML
<?xml version="1.0" encoding="UTF-8"?>
|
|
<section id="greyboxing">
|
|
<title>The Grey-Box Pentesting Method</title>
|
|
<p>
|
|
Crystal-Box vs. Black-Box pentesting refers to the amount of information
|
|
regarding the target environment, architecture, and/or applications that is
|
|
initially shared by the customer with the pentesters. With Black-Box
|
|
testing, pentesters are given no information whatsoever about the target(s).
|
|
With Crystal-Box testing, pentesters are given all information requested
|
|
about the target(s), including source-code (when relevant), access to
|
|
developers or system management, etc.
|
|
</p>
|
|
<p>
|
|
<company_short/>
|
|
will conduct Grey-Box testing, which means that partial information is given
|
|
on the target.
|
|
</p>
|
|
</section> |