# Penetration test

**What is a penetration test?**

A penetration test is a commissioned, controlled attempt to attack your own systems. It proves whether a vulnerability can actually be exploited.

Effort ranges from a one-day test of a few systems to multi-week projects with several testers. A full penetration test is a separate engagement with its own scope, its own written legal basis and its own budget.

The vetosec IT Check includes a light penetration test. It looks at what is reachable from outside through an attacker's eyes and is deliberately kept lean in scope. If you need a full review across several attack paths, that is commissioned as a separate penetration test.

## Related terms
- [Vulnerability scan](https://vetosec.at/en/it-security/schwachstellenscan/)
- [Vulnerability and vulnerability assessment](https://vetosec.at/en/it-security/schwachstelle/)
- [IT security audit](https://vetosec.at/en/it-security/it-sicherheitsaudit/)

## Source
https://vetosec.at/en/it-security/penetrationstest/ (vetosec, pruefung)
