Vulnerability scan

A vulnerability scan is an automated check that compares systems against a database of known security flaws — without proving whether they can actually be exploited.

Scans are fast and broad, producing a list of potential issues with severity scores. But they don't confirm real-world exploitability, so they can't tell you which findings are actually dangerous.

Scans are hygiene; pentests are assurance.

RELATED TERMS

Penetration test
Automated attack simulation