Real-world hacker techniques identify defensive weaknesses and data at risk. This can be performed as part of the vulnerability assessment (recommended) or separately to assess the security posture.
A penetration test, or sometimes called a PENTEST, is a friendly software attack on a computer system looking for security weaknesses, and potentially gaining access to the computer's features and data. The process typically identifies the target systems and a particular goal—then reviews available information and undertakes various means to attain the goal.
CyberDx has conducted thousands of PENTESTs for commercial and government customers, thus adding greater analysis supporting vulnerability assessments. Our team is so good it developed and executed training for U.S. Army ethical hackers for many years.