Analyze and test using running environment. Use

to test software provided by third parties where no

access to software code. Eg. cross-site scripting,

SQL injection

Testing of network security in view of a hacker.

Use of false identity to gain access to system identity.

Can use IP/ MAC address, usernames, wireless network

SSIDs.

Events related to hardware device login and access

Test code in run time

Type of dynamic testing which use specific inputs

to detect flaws under stress/load. Eg. input invalid

parameters to test

Check any port or port range open in a computer.

Cause unauthorized modifications of data in transit or in storage. Results in violation of integrity as well as availability.

Should synchronize across entire network to have correct and consistent time in logs and device traffic flows.

Detailed testing by accessing code and internal structure

Transfer of data and control between program

interfaces.

Verify software meets security requirements.

Deny an action or activity carried out by an attacker.

Device event message log standard

Common Vulnerability and Exposures dictionary