One part of penetration testing is to test web security. It is necessary to understand the principle of vulnerability generation, collect Internet exposure through information, scan for vulnerabilities, exploit vulnerabilities, and conduct script self-writing and manual testing when necessary, and strive to dig out the vulnerabilities existing in the target and propose Suggestions for rectification, of course, if the technology is more refined, you also need to learn about intranet penetration (workgroup and domain environment), white box audit, app, and small program penetration...
In short, web security is included in penetration testing, but not all of penetration testing.
Zero-based entry
For students who have never been exposed to network security, we have prepared a detailed learning and growth roadmap for you. It can be said that it is the most scientific and systematic learning route, and it is no problem for everyone to follow this general direction.
At the same time, there are supporting videos for each section corresponding to the growth route:
Due to limited space, only part of the information is shown, you need to click the link below to get it
CSDN spree: "Hacker & Network Security Introduction & Advanced Learning Resource Pack" free sharing
Video supporting materials & domestic and foreign network security books, documents & tools
Of course, in addition to the supporting videos, various documents, books, materials & tools have also been sorted out for you, and they have been classified for you.
Due to limited space, only part of the information is shown, you need to click the link below to get it
CSDN spree: "Hacker & Network Security Introduction & Advanced Learning Resource Pack" free sharing