The challenge for Day Ten is – Read and Learn about Ethical hacking.
Ethical hacking is a bit of an odd one for me, as perception can play a big part in what’s considered ethical.
“Ethical Hackers” or “White Hat Hackers” are supposedly the good guys, using their powers for good. While malicious or “Black Hat” hackers are the baddies using their abilities for evil. One man’s Freedom Fighter is another man’s Terrorist.
Would Anonymous and other Hacktivist organisations consider themselves “ethical hackers”? Would their targets? Would the general public?
The key difference I can gather is an “ethical hacker” has the permission of the owner of the business/network/application/device to have a go at finding vulnerabilities and taking advantage of them, whereas malicious hackers are uninvited attackers often hacking for personal gain or to harm their target.
E.g. Running a security audit vs nicking some Bitcoin.
Thanks for reading my post and following my progress through the 30 Days of Security Testing.
Feel like joining in? Sign into the WeTest Slack group and get involved!