What is Hacking, Ethical Hacking, VA/PT and Cyber Security

Hacking:

Hacking can be defined as “unauthorized access”. But it doesn’t always mean that we will get access to our target or the system.

Let’s understand it using a simple example of “Life Hack“. Lifehack word is very famous among youtube for small tricks for daily lifestyle. If we see the Hindi meaning of “life hack” it will be jugaad.

Jugaad is a very famous Hindi word in India which stand for making something for which it was never made to do.  So, Basically, a system was never built to give unauthorized access, but somehow an attacker did that, and it is not necessary to get access to a system while performing hacking on the system.

Hacking can be performed as an individual as well as in a group.

There are following types of hackers: –

  1.  White Hat Hackers: –  White hat hackers are certified security professionals who are certified from various authorities. Certified hackers are working on corporate projects and handling clients with signing a nondisclosure agreement (NDA), also known as a confidentiality agreement (CA), confidential disclosure agreement (CDA) first and they will take permission for the specific scope and conduct  Vulnerability Assessment & Penetration testing for the same.
  2.  Black Hat Hackers: – Black hat hackers are skilled hackers who are using their skills for personal benefits like stealing money from the accounts, for fun, for getting famous in the world, etc.
  3.  Grey Hat hackers: —  Grey hat hackers are certified professionals who are working for some company for the legal assessments meanwhile they are also using their skills for black hat purpose. These guys are one of the most dangerous people in the world.
  4. Script kiddies: – Script kiddies are entry-level hackers who are dependent on tools and techniques.
  5. Suicide hackers: – A suicide hacker is a hacker who hacks for the sake of destruction. Much like a suicide bomber, they are driven by bad intentions in the majority of the cases. They are aware that they will cause harm and potentially will harm themselves as well.

Type of Cybersecurity Teams: —

  1. Assessment Team: – this a core team who handle cybersecurity assessments for the various projects including mobile apps, web applications, networks, servers, VLAN, VPN, firewalls, IDS, IPS, etc.
  2. Auditing Team: – this team reviews the cybersecurity policies of an organization with following various standards  Like ISO 27000, PCI-DSS, HL7, HIPAA, etc as per the specific requirement.
  3. Red Team: – These are one of the most skilled people who handle the War zone assessments, Spear Phishing. Basically, the Red Team relied on its own expertise to explore any possible way to plan and carry out an attack – thus trying to espouse the standpoint, the attitude of potential assailants.
  4. Blue Team : –

 

Leave a Reply

Your email address will not be published. Required fields are marked *