Vulnerability Assessment and Penetration Testing at BugsBD Limited

Abstract

I interned as a Penetration tester at BugsBD Ltd, Internships as part of my Undergraduate degree of Bachelor of Science in Software Engineering at Daffodil International University (DIU). I am interested in Vulnerability Testing, and my internship in Penetration testing gave me the opportunity to work at BugsBD Ltd, on which this report is based. 1.2 Rational: Internship helps to build up confidence, etiquette, and habits which contribute to success. Internships can offer a variety of benefits. Internships provide students with much learning experiences and possibilities as they begin their careers. I want to emphasize the value of my theoretical knowledge as well as my practical experience and indeed it helped me to earn more practical experience. A penetration test, sometimes referred to as a pen test or ethical hacking, is an authorized simulated cyberattack that is conducted to evaluate the security of a computer system. To grasp the distinction, compare this to a vulnerability analysis. Bug avoidance, decreased development costs, and improved performance are just a few benefits of testing. Make a plan for handling testing. Pen testing involves breaking into multiple application systems to look for security flaws like unsensitized inputs that are susceptible to code injection attacks. The information gained from the penetration test may be used to strengthen our WAF security protocols and address vulnerabilities that were discovered. It consists of following stages: . Planning and reconnaissance . Scanning . Gaining Access . Maintaining access . Analysis 1.4 Testing methods: . External testing . Internal testing . Blind testing . Double-blind testing . Targeted testing