Vulnerability Assessment — Technology Wiki

Overview

Direct Answer

Vulnerability assessment is a systematic examination of information systems to discover, classify, and evaluate security weaknesses before they can be exploited. It quantifies risk exposure by determining which vulnerabilities pose the greatest threat to organisational assets.

How It Works

The process employs automated scanning tools and manual testing techniques to probe systems, applications, and networks for known and unknown weaknesses across multiple attack surfaces. Findings are then categorised by severity, affected assets, and exploitability, enabling prioritisation based on business context and threat likelihood.

Why It Matters

Organisations depend on systematic identification to allocate remediation resources efficiently, reduce breach risk, and demonstrate due diligence for regulatory compliance requirements. Early detection substantially lowers remediation costs compared to incident response.

Common Applications

Financial institutions routinely conduct assessments before system deployments; healthcare organisations assess connected medical devices and electronic health record systems; manufacturers evaluate industrial control systems and supply chain software integrations.

Key Considerations

Assessments provide a snapshot at a single point in time and cannot detect zero-day vulnerabilities or advanced persistent threats. False positives from automated tools require skilled analysts to validate findings, making comprehensive assessment resource-intensive.

Related in Offensive Security

Cybersecurity

The practice of protecting systems, networks, and programs from digital attacks, unauthorised access, and data breaches.

Threat Intelligence

Evidence-based knowledge about existing or emerging threats to an organisation's digital assets and infrastructure.

Penetration Testing

A simulated cyberattack against a system to evaluate the security of its defences and identify exploitable vulnerabilities.

Red Team

A group of security professionals who simulate real-world attacks to test an organisation's defensive capabilities.

Blue Team

A group of security professionals who defend against both real attackers and simulated attacks from red teams.

Purple Team

A collaborative security approach combining red team attack knowledge with blue team defensive capabilities.

Intrusion Prevention System

A network security technology that examines network traffic to detect and prevent vulnerability exploits.

Ransomware

Malicious software that encrypts a victim's files and demands payment for the decryption key.

Malware

Malicious software designed to disrupt, damage, or gain unauthorised access to computer systems.

Phishing

A social engineering attack that uses fraudulent communications to trick recipients into revealing sensitive information.

Spear Phishing

A targeted phishing attack directed at specific individuals or organisations using personalised deceptive content.

Zero-Day Vulnerability

A software security flaw unknown to the vendor that can be exploited before a patch is available.

More in Cybersecurity

Supply Chain Attack

Offensive Security

A cyberattack targeting the less-secure elements of a supply chain to compromise a primary target.

Intrusion Detection System

Defensive Security

A system that monitors network traffic or system activities for malicious activity or policy violations.

Attack Surface Management

Offensive Security

The continuous discovery, inventory, classification, and monitoring of all external-facing digital assets to identify and reduce an organisation's exposure to cyber threats.

SQL Injection

Offensive Security

A code injection technique that exploits vulnerabilities in database-driven applications through malicious SQL statements.

Firewall

Network Security

A network security device that monitors and filters incoming and outgoing network traffic based on security rules.

Software Supply Chain Security

Security Governance

Practices and tools that protect the integrity of software components, dependencies, build pipelines, and distribution channels from compromise and tampering.

Phishing-Resistant Authentication

Identity & Access

Authentication methods such as FIDO2 passkeys and hardware security keys that are immune to phishing attacks because credentials are cryptographically bound to the legitimate service.

Adversary Simulation

Offensive Security

Advanced red team exercises that replicate the tactics, techniques, and procedures of specific threat actors to evaluate an organisation's detection and response capabilities.