. https://www.bulletproof.co.uk/blog/vul-scan-vs-pen-test
blog article
You’ll often find that ‘vulnerability scan’ and ‘penetration test’ are wrongly used interchangeably, creating confusion about which is the right security choice for businesses. Broadly speaking, a vulnerability scan could be thought of as a surface-level security assessment, whereas a penetration test delves that much deeper. In fact, penetration testers often make use of a vulnerability scan as part of their process. This means that organisations who choose not to get a penetration test (pen test) on the basis that they have recently conducted a vulnerability scan, could be putting themselves at risk. What is a vulnerability assessment? All operating systems, software packages and the like will have flaws in their design. Over time, these flaws become known. Bug bounty hunters, security firms and developers often find them when conducting research or white-hat hacking. READ MORE