Penetration Testing focuses on identifying vulnerabilities and weaknesses from the target systems. In 2NS’ model, penetration testing is done using automation as well as manual testing and software tools. Target systems can be for example complex software, specific servers or devices, or entire networks.
Usually, Penetration Testing projects do not focus on organization’s detection and response capability and rather focuses on discovering as many vulnerabilities as possible from the target systems.
For attacker emulation projects that also measure organization’s detection and response capability, see our Red Teaming services.