Skip to content
July 12, 2026
  • Linkedin
  • Twitter
  • Facebook
  • Youtube

Daily CyberSecurity

Zero-hour alerts. Unmatched analysis.

Primary Menu
  • Home
  • CVE Data
    • CVE Watchtower
    • Top Exploited CVEs
    • CVE Stats by Vendor
    • Q2 2026 Report
  • Cyber Criminals
  • Data Leak
  • Linux
  • Malware
  • Vulnerability
  • Submit Press Release
  • Vulnerability Report
Light/Dark Button
  • Home
  • Technique
  • Penetration testing is evolving as an automated security tool with Breach and Attack Simulation
  • Technique

Penetration testing is evolving as an automated security tool with Breach and Attack Simulation

Do Son February 9, 2020 5 minutes read
Attack Simulation

Image: Pixabay

Image: Pixabay

Penetration testing has been a standard practice that security professionals use in determining the integrity of security systems. Also known as the “pen test”, this form of ethical hacking is an authorized cyberattack undertaken to test the reliability of established defenses and look for exploitable vulnerabilities.

The relevance of this method of security testing is dwindling due to the advent of more sophisticated approaches. In particular, the rise of automated penetration testing using breach and attack simulation (BAS) is making manual pen tests appear crude by comparison.

The basics of penetration testing

The National Cyber Security Center refers to penetration testing as a method used to examine the dependability of an IT system through attacks on all or some of the system’s security features, employing the same tools and techniques used by attackers. These tests can be a part of a full security audit, similar to the routine tests undertaken by banks and financial companies in compliance with the Payment Card Industry Security Standard (PCISS) for instance.

To conduct a pen test, a team identifies the systems to target, sets goals, then collects and reviews information to formulate a course of action to achieve the goals. The ultimate result of the test will determine whether a system is vulnerable to attacks. The pen test will also evaluate the sufficiency or insufficiency of defenses, and it will identify the areas of inadequacy.

In all these, the key idea is that pen tests are done manually by security professionals.

Is pen testing obsolete?

In 2018, Gartner published an analysis piece stating that simple penetration has become outmoded. Using manual methodologies to search for vulnerabilities without threat behavior replication is no longer enough when dealing with advanced threats. A plain and straightforward hunt for vulnerabilities with basic parameters does not simulate the kind of cyberattacks that computers and networks are encountering at present.

Artificial intelligence, machine learning, and automation are already part of attackers’ arsenals. Thus, cyber threats have already evolved to a point wherein these can adapt and adjust using automation. Such technologies make persistent cybercriminals even more dangerous, so simple approaches in testing cyber defenses are simply not enough. This means that security professionals also need to keep up with the times.

New roles, paradigms, and automation processes

In addition to the evolving nature and increasing frequency of cyberattacks, simple pen testing is becoming less relevant because of the growing popularity of new paradigms, including automation and simulation. For instance, the concept of the “red team” approach involves continuous exercises that serve as alternatives to basic pen-testing.

Such high-quality exercises emulate the methods and approaches employed by real attackers. It also takes threat behavior into account. This goes beyond technology (computers, networks, and devices). It also deals with people (staff, contractors, and business partners), as well as physical assets (data centers, buildings, warehouses, and substations), in determining vulnerabilities.

Breach and Attack Simulation, or BAS, is a relatively new approach in IT security. It is designed to conduct tests automatically and continuously. BAS makes it possible to conduct repeated simulations of full attack cycles with greater ease, speed, and consistency.

Moreover, BAS tools enable businesses to conduct security simulations without the need to have high levels of technical skill. BAS platforms provide the ability to initiate attack simulations with a few clicks, and reports about the outcomes can be generated more efficiently.

Both approaches have superseded simple penetration testing, with different levels of expertise needed.

The read team approach will require experienced and highly competent security professionals who come up with the most suitable red team engagement, scrutinize the security system and develop ways to defeat it.

On the other hand, breach and attack simulation (BAS) is largely about continuously automating the penetration tests. BAS tools are used to perform scan-exploit-repeat cycles with a few clicks. It does not require more people to simulate the attacks. Advanced technical skills are not necessary for doing the simulations.

Does the simple pen test still have a place in security systems?

Depending on what an organization needs or prefers, the choice will have to be either red teaming or BAS. You may still consider vulnerability scanning, but simple and manual pen testing will be out of the question since more capable methods are available.

Some might raise the point that a full range of BAS tools might be impractical or expensive. This argument is easily countered by the availability of BAS tools on a software-as-a-service (SaaS) basis. Organizations don’t have to purchase and deploy BAS tools in their entirety. Essentially, they can just pay for it on an as-need basis.

Automated penetration testing with BAS yields significantly better results than hiring pen testers. SaaS makes it more accessible, as it allows businesses to perform sophisticated automated tests on their own, without the need to install hardware nor hire people.

Meanwhile, highly-trained security experts playing the role of the red team will advance penetration testing to a more rigorous level of scrutiny. This can be especially relevant in the context of a data-rich environment since this approach will consider the possibility of bad actors, malicious insiders, or unwitting participants that endanger an organization’s system from within.

The takeaway

Simple and manual penetration testing has become inadequate in dealing with today’s more aggressive and rapidly-evolving threat environment. Organizations need to elevate their security methods into something that replicates actual threat behavior and examines variations of potential attacks. This is where automated tools and continuous simulation will play a big part.

Share this article:

Facebook Post LinkedIn Telegram
Tags: Attack Simulation

Search

Translation

CVE WATCHTOWER
🚨

Receive alerts for vulnerabilities being exploited in the wild.

⚡

Get notified instantly when a Proof of Concept (PoC) exploit is published.

🔍

Access critical info on vulnerabilities even when marked as "RESERVED".

🧠

Insights powered by decades of expertise and global intelligence sources.

🎯

Customize alerts with up to 10 keywords for your specific tech stack.

📊

Export the raw CVE database for SIEM integration and reporting.

Upgrade Package

🚨 Active Exploits in the Wild

  • CVE-2026-1207CVSS 5.4
    An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28. Raster lookups on...
    Admin intel📅 Updated: Jul 10, 2026
  • CVE-2026-48939CVSS 10.0
    A vulnerability in the iCagenda extension for Joomla allows the upload of arbitrary files in the file attachment...
    CISA KEV📅 Added to KEV: Jul 10, 2026
  • CVE-2026-56291CVSS 10.0
    The Joomla extension Balbooa Forms is vulnerable to an unauthenticated arbitrary file upload that allows uploading executable files...
    CISA KEV📅 Added to KEV: Jul 10, 2026
  • CVE-2026-55255CVSS 8.4
    Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.1, an Insecure Direct...
    CISA KEV📅 Added to KEV: Jul 7, 2026
  • CVE-2026-48908
    A vulnerability in SP Page Builder for Joomla allows unauthenticated users to upload arbitrary files, ultimately resulting in...
    CISA KEV📅 Added to KEV: Jul 7, 2026
  • CVE-2026-56290
    The Joomla extension Page Builder CK is vulnerable to an unauthenticated arbitrary file upload that allows uploading executable...
    CISA KEV📅 Added to KEV: Jul 7, 2026
  • CVE-2026-20896CVSS 9.8
    Gitea Docker image: `REVERSE_PROXY_TRUSTED_PROXIES = *` default lets any source IP impersonate any user via `X-WEBAUTH-USER`
    Admin intel📅 Updated: Jul 6, 2026
  • CVE-2026-48282CVSS 10.0
    ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limitation of a Pathname to a Restricted...
    Admin intelCISA KEV📅 Added to KEV: Jul 7, 2026📅 Updated: Jul 3, 2026
Powered by CVE Watchtower

🔴 Live Critical Threats

  • CVE-2026-61447CVSS 10.0
    PraisonAI before 1.6.78 contains a remote code execution vulnerability in CodeAgent._execute_python() that...
  • CVE-2026-61445CVSS 9.9
    PraisonAI before 4.6.78 contains arbitrary file write and command execution vulnerabilities in...
  • CVE-2026-60090CVSS 9.8
    PraisonAI before 4.6.78 fails to validate the caller-controlled dimension argument in the...
  • CVE-2026-57827CVSS 10.0
    The Joomla extension RSFiles is vulnerable to an unauthenticated arbitrary file upload...
  • CVE-2026-57828CVSS 9.0
    The Joomla extension Phoca Downloads is vulnerable to an authenticated arbitrary file...
  • CVE-2026-14480CVSS 9.9
    OpenPLC Runtime v3 contains an authenticated arbitrary file write vulnerability in the...
  • CVE-2026-20744CVSS 9.8
    The charging station websocket endpoint accepts connections without proper authentication, which could...
  • CVE-2026-57807CVSS 9.8
    Authentication Bypass Using an Alternate Path or Channel vulnerability in miniOrange Security...
  • CVE-2026-55879CVSS 9.3
    OpenReplay is a self-hosted session replay suite. From 1.24.0 before 1.25.0, the...
  • CVE-2026-12761CVSS 9.8
    The miniOrange Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin for...
Powered by CVE WATCHTOWER

Our Websites
  • Penetration Testing Tools
  • The Daily Information Technology
  • Top Exploited CVEs
  • Daily CyberSecurity

    • About SecurityOnline.info
    • Advertise with us
    • Announcement
    • Contact
    • Contributor Register
    • Login
    • Disclaimer
    • DCMA
    • Privacy Policy
    • About SecurityOnline.info
    • Advertise on SecurityOnline.info
    • Contact Us

    When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works

    • CVE Watchtower
    • CVE Statistics by Vendor 2026
    • Q2 2026 Report
    • Top Exploited CVEs
    • Linkedin
    • Twitter
    • Facebook
    • Youtube
    © 2017 - 2026 Daily CyberSecurity. All Rights Reserved.