The seven main types of security testing as per the Open Source Security Testing methodology manual are:
Vulnerability Scanning: Automated software scans a system against known vulnerabilities.
Security Scanning: Manual or automated technique to identify network and system weaknesses.
Penetration testing: Penetration testing is on the security testing which helps in identifying vulnerabilities in a system.
Risk Assessment: It involves the analysis of possible risks in the system. Risks are classified as Low, Medium and High.
Security Auditing: Complete inspection of systems and applications to detect vulnerabilities.
Ethical hacking: Hacking is done on a system to detect flaws in it rather than personal benefits.
Posture Assessment: This combines Security Scanning, Ethical Hacking and Risk Assessments to show an overall security posture of an organization.
