{"id":8793,"date":"2025-12-24T00:59:35","date_gmt":"2025-12-23T13:59:35","guid":{"rendered":"https:\/\/interscale.com.au\/blog\/?p=8793"},"modified":"2026-06-05T15:21:11","modified_gmt":"2026-06-05T05:21:11","slug":"vulnerability-assessment-vs-penetration-testing","status":"publish","type":"post","link":"https:\/\/interscale.com.au\/blog\/vulnerability-assessment-vs-penetration-testing\/","title":{"rendered":"Vulnerability Assessment vs Penetration Testing: Which Does Your Business Need?"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_85 ez-toc-wrap-left counter-hierarchy ez-toc-counter ez-toc-grey ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"Toggle Table of Content\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 eztoc-toggle-hide-by-default' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/interscale.com.au\/blog\/vulnerability-assessment-vs-penetration-testing\/#What_Is_Vulnerability_Assessment\" >What Is Vulnerability Assessment?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/interscale.com.au\/blog\/vulnerability-assessment-vs-penetration-testing\/#What_Is_Penetration_Testing\" >What Is Penetration Testing?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/interscale.com.au\/blog\/vulnerability-assessment-vs-penetration-testing\/#Vulnerability_Assessment_vs_Penetration_Testing\" >Vulnerability Assessment vs Penetration Testing<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/interscale.com.au\/blog\/vulnerability-assessment-vs-penetration-testing\/#Purpose_and_Objective\" >Purpose and Objective<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/interscale.com.au\/blog\/vulnerability-assessment-vs-penetration-testing\/#Depth_and_Scope_of_Testing\" >Depth and Scope of Testing<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/interscale.com.au\/blog\/vulnerability-assessment-vs-penetration-testing\/#Testing_Methodology_and_Tools\" >Testing Methodology and Tools<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/interscale.com.au\/blog\/vulnerability-assessment-vs-penetration-testing\/#Frequency_of_Execution\" >Frequency of Execution<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/interscale.com.au\/blog\/vulnerability-assessment-vs-penetration-testing\/#Output_and_Reporting\" >Output and Reporting<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/interscale.com.au\/blog\/vulnerability-assessment-vs-penetration-testing\/#Role_in_Compliance\" >Role in Compliance<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-10\" href=\"https:\/\/interscale.com.au\/blog\/vulnerability-assessment-vs-penetration-testing\/#Cost_and_Resource\" >Cost and Resource<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-11\" href=\"https:\/\/interscale.com.au\/blog\/vulnerability-assessment-vs-penetration-testing\/#Comparison_Table_Vulnerability_Assessment_vs_Penetration_Testing\" >Comparison Table Vulnerability Assessment vs Penetration Testing<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-12\" href=\"https:\/\/interscale.com.au\/blog\/vulnerability-assessment-vs-penetration-testing\/#When_Is_a_Vulnerability_Assessment_Enough_for_Cybersecurity\" >When Is a Vulnerability Assessment Enough for Cybersecurity?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-13\" href=\"https:\/\/interscale.com.au\/blog\/vulnerability-assessment-vs-penetration-testing\/#Combine_Vulnerability_Assessment_with_Penetration_Testing_for_Maximum_Coverage\" >Combine Vulnerability Assessment with Penetration Testing for Maximum Coverage<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-14\" href=\"https:\/\/interscale.com.au\/blog\/vulnerability-assessment-vs-penetration-testing\/#Your_Next_Steps\" >Your Next Steps<\/a><\/li><\/ul><\/nav><\/div>\n\n<p class=\"wp-block-paragraph\">Not sure whether your business needs a vulnerability assessment or a penetration testing? You\u2019re not alone. While both are essential tools for finding weaknesses in your security, they serve very different purposes. Understanding how they work and when to use them is the first step in strengthening your cybersecurity strategy. In this article, we will provide a comprehensive comparison between vulnerability assessment vs penetration testing.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"What_Is_Vulnerability_Assessment\"><\/span>What Is Vulnerability Assessment?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">A vulnerability assessment (VA) is a routine health check of your system. VA scans your network, servers, and apps for known issues before attackers find them. The main goal of VA is to identify, classify, and prioritise vulnerabilities so you can fix them before they\u2019re exploited. <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">These assessments lean heavily on automated vulnerability scanning tools that run through checklists of known flaws. It\u2019s systematic, efficient, and great for maintaining visibility across your infrastructure. With VA, you\u2019re not simulating an attack, but you\u2019re checking if the windows are unlocked.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"What_Is_Penetration_Testing\"><\/span>What Is Penetration Testing?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Penetration testing is the process of simulating a cyber attack. In pentest, ethical hackers actively try to exploit them to see how far they can get. Can someone break into your system? What damage could they cause? This approach tests the effectiveness of your defences under realistic conditions. <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Tools and techniques vary, but the goal stays the same: test your security from the outside in and get a clear picture of how resilient your defences are. One of the techniques in pentest is some vulnerability to scanning early on.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Vulnerability_Assessment_vs_Penetration_Testing\"><\/span>Vulnerability Assessment vs Penetration Testing<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">While both aim to boost your information security, they have distinct jobs and methods. You can&#8217;t just swap one for the other. <\/p>\n\n\n\n<p class=\"has-cyan-bluish-gray-background-color has-background wp-block-paragraph\">The main difference between penetration test and vulnerability assessment comes down to depth versus breadth. Vulnerability assessments offer a wide-angle snapshot of known issues. Penetration testing digs deep, mimicking real-world attacks to gauge actual risk.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Purpose_and_Objective\"><\/span>Purpose and Objective<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Vulnerability Assessment: <\/strong>Helps you catalogue known security weaknesses, often scored (like with CVSS). All for you to know where to focus your patching and fixing efforts based on known risks. The output is a ranked list of vulnerabilities based on risk.<\/li>\n\n\n\n<li><strong>Penetration Testing:<\/strong> The pentest idea is to exploit flaws, assess impact, and test how your controls hold up under pressure. Pentest mimics a real-world threat actor trying to leverage vulnerabilities. One gives you a roadmap to fix what\u2019s weak. The other proves whether the weaknesses are a real threat or just theoretical.<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Depth_and_Scope_of_Testing\"><\/span>Depth and Scope of Testing<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Vulnerability Assessment: <\/strong>Casts a wide net, scanning many assets but staying shallow. But it doesn&#8217;t go very deep. VA is only at the surface level but comprehensive.<\/li>\n\n\n\n<li><strong>Penetration Testing:<\/strong> Zeroes in on specific, high-value targets. They\u2019re narrow in scope but incredibly thorough, testing how far an attacker could go once inside. This is why relying solely on one method leaves gaps\u2014VA might miss deep threats, while PT might overlook broader system-level issues.<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Testing_Methodology_and_Tools\"><\/span>Testing Methodology and Tools<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Vulnerability Assessment:<\/strong> Largely automated. Tools like Nessus, OpenVAS, or Qualys check against known vulnerabilities, referencing massive databases of CVEs.<\/li>\n\n\n\n<li><strong>Penetration Testing:<\/strong> Follows structured ethical hacking methodologies. For example, we rely on exploitation tools (like Metasploit), web proxies (Burp Suite), password crackers, sniffers (Wireshark), and often custom scripts. Our team at Interscale also applies OWASP and NIST frameworks. Reconnaissance, exploitation, post-exploitation\u2014and sometimes social engineering\u2014are all part of the process, depending on scope and consent.<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Frequency_of_Execution\"><\/span>Frequency of Execution<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Vulnerability Assessment: <\/strong>Can and should run regularly\u2014monthly or even continuously. It\u2019s a light-touch approach that provides ongoing feedback.<\/li>\n\n\n\n<li><strong>Penetration Testing:<\/strong> As more resource-intensive, pentest usually conducted annually or triggered by major changes. For example, if there are new application deployments or infrastructure upgrades, that&#8217;s the time for pentest.<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Output_and_Reporting\"><\/span>Output and Reporting<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Vulnerability Assessment: <\/strong>Usually gives you a scanner-generated report. You can get lists of issues, severity ratings, and standard remediation tips. The focus is on inventory. Of course, it\u2019s useful but sometimes includes false positives.<\/li>\n\n\n\n<li><strong>Penetration Testing: <\/strong>Delivers a crafted, human-written narrative. It walks you through what was tested, what was exploited, and what it means. The focus is on demonstrated, exploitable risk and business impact. Of course, complete with tailored, practical remediation guidance.<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Role_in_Compliance\"><\/span>Role in Compliance<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Vulnerability Assessment: <\/strong>Supports ongoing compliance efforts like regular checks for known flaws, aligning with standards such as APRA CPS 234 and ACSC Essential Eight.<\/li>\n\n\n\n<li><strong>Penetration Testing: <\/strong>Often need to validate the effectiveness of your controls under real-world conditions. It&#8217;s critical for deeper assurance, especially in sectors under the SOCI Act or where APRA scrutiny is high.<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Cost_and_Resource\"><\/span>Cost and Resource<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Vulnerability Assessment: <\/strong>This represents a more affordable option\u2014automated tools, less human input. It&#8217;s efficient and scalable for regular hygiene.<\/li>\n\n\n\n<li><strong>Penetration Testing: <\/strong>Comes with a higher price tag, but for good reason. Skilled ethical hackers, in-depth manual work, and detailed analysis all contribute to a stronger understanding of your actual risk exposure.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Comparison_Table_Vulnerability_Assessment_vs_Penetration_Testing\"><\/span>Comparison Table Vulnerability Assessment vs Penetration Testing<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Let\u2019s break VA and pentest down simply. Here&#8217;s a side-by-side comparison to clarify where each method stands and why both matter.<\/p>\n\n\n\n<figure class=\"wp-block-table is-style-stripes has-small-font-size\"><table class=\"has-fixed-layout\"><thead><tr><th>Feature<\/th><th>Vulnerability Assessment<\/th><th>Penetration Testing<\/th><\/tr><\/thead><tbody><tr><td><strong>Primary Goal<\/strong><\/td><td>Identify &amp; list <em>potential<\/em> vulnerabilities<\/td><td><em>Exploit<\/em> vulnerabilities &amp; test defense effectiveness<\/td><\/tr><tr><td><strong>Scope<\/strong><\/td><td>Broad (many assets)<\/td><td>Focused \/ Narrow (specific targets)<\/td><\/tr><tr><td><strong>Depth<\/strong><\/td><td>Shallow \/ Surface-level<\/td><td>Deep \/ In-depth<\/td><\/tr><tr><td><strong>Methodology<\/strong><\/td><td>Primarily Automated Vulnerability Scanning<\/td><td>Manual Ethical Hacking + Tools (incl. scanning, exploitation)<\/td><\/tr><tr><td><strong>Frequency<\/strong><\/td><td>Higher (Continuous \/ Quarterly \/ Monthly)<\/td><td>Lower (Annual \/ Semi-Annual \/ Event-driven)<\/td><\/tr><tr><td><strong>Tools Focus<\/strong><\/td><td>Scanners (e.g., Nessus, OpenVAS, Qualys)<\/td><td>Exploitation Frameworks (e.g., Metasploit), Proxies (e.g., Burp Suite)<\/td><\/tr><tr><td><strong>Output \/ Report<\/strong><\/td><td>List of potential flaws, ranked by severity<\/td><td>Narrative report, exploit proof, business impact, tailored remediation<\/td><\/tr><tr><td><strong>False Positives<\/strong><\/td><td>Possible, requires validation<\/td><td>Largely eliminated through validation<\/td><\/tr><tr><td><strong>Typical Compliance Role<\/strong><\/td><td>Fulfills regular scanning requirements<\/td><td>Meets mandates for deep testing &amp; control validation<\/td><\/tr><tr><td><strong>Cost<\/strong><\/td><td>Lower<\/td><td>Higher<\/td><\/tr><tr><td><strong>Resource Needs<\/strong><\/td><td>Lower expertise, tool-driven<\/td><td>High expertise (Ethical Hackers) required<\/td><\/tr><tr><td><strong>Analogy<\/strong><\/td><td>Security Health Check \/ Checking Unlocked Doors<\/td><td>Simulated Break-in \/ Detailed MRI<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"When_Is_a_Vulnerability_Assessment_Enough_for_Cybersecurity\"><\/span>When Is a Vulnerability Assessment Enough for Cybersecurity?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">A <a href=\"https:\/\/interscale.com.au\/services\/cybersecurity-services\/vulnerability-assessment\/\">vulnerability assessment service<\/a> can be enough only under clearly defined, low-risk conditions, where the objective is visibility and basic security hygiene rather than attack simulation. It is typically sufficient when all of the following conditions apply:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>External exposure is limited, with few or no critical internet-facing systems.<\/li>\n\n\n\n<li>The environment is stable, with no recent changes to infrastructure, applications, or identity and access models.<\/li>\n\n\n\n<li>Security maturity is early or transitional, where the immediate priority is building patching and remediation discipline.<\/li>\n\n\n\n<li>Assurance requirements are primarily compliance-driven, such as meeting routine scanning expectations under ACSC Essential Eight or APRA CPS 234.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">Under these conditions, regular vulnerability scanning provides practical confirmation that patching, configuration, and asset management controls are operating as expected. It helps surface misconfigurations, prevents known flaws from accumulating, and supports predictable remediation workflows.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">However, this level of assurance has clear limits. A vulnerability assessment establishes baseline security posture, but it does not show how weaknesses combine, how far an attacker could progress, or what the real business impact would be if controls fail.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Combine_Vulnerability_Assessment_with_Penetration_Testing_for_Maximum_Coverage\"><\/span>Combine Vulnerability Assessment with Penetration Testing for Maximum Coverage<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Vulnerability assessment and penetration testing are best seen as a combined strategy. It\u2019s not a one-or-the-other situation. Together, they turn security from a checklist exercise into an evidence-based risk model.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Vulnerability assessment on its own is rarely enough because finding weaknesses is not the same as understanding risk. A scan can tell you that a flaw exists, but it cannot show how multiple issues might be chained together, how far an attacker could move once inside, or what the actual business impact would be. This gap is where many organisations develop a false sense of security.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">That is why a layered strategy makes far more sense. Regular vulnerability assessments provide broad coverage and continuous visibility. Meanwhile, penetration testing validates whether those weaknesses can realistically be exploited under real-world conditions.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">You do not need to choose between them. A combined approach delivers more complete protection with better prioritisation and clearer assurance. And if you are concerned about managing both, don\u2019t be.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">As a <a href=\"https:\/\/interscale.com.au\/\">reliable MSP in Australia<\/a>, our team at Interscale covers both from routine vulnerability assessments services through to targeted and high-impact <a href=\"https:\/\/interscale.com.au\/services\/cybersecurity-services\/penetration-testing-services\/\">penetration testing<\/a>. Schedule a cybersecurity consultation with us to get a more comprehensive explanation.<\/p>\n\n\n\n<div class=\"wp-block-buttons is-layout-flex wp-block-buttons-is-layout-flex\">\n<div class=\"wp-block-button\"><a class=\"wp-block-button__link has-white-color has-black-background-color has-text-color has-background has-link-color wp-element-button\" href=\"https:\/\/interscale.com.au\/services\/cybersecurity-services\/\" target=\"_blank\" rel=\"noreferrer noopener\">Schedule a Cybersecurity Consultation<\/a><\/div>\n<\/div>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Your_Next_Steps\"><\/span>Your Next Steps<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Penetration testing and vulnerability assessment focus on different problems, but they are designed to work together. For most businesses, the most sensible IT security solution is to combine both approaches. Regular vulnerability assessment maintains hygiene and compliance, while periodic penetration testing confirms that controls hold up when pressure is applied.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">In short, if your goal is realistic risk reduction, not just reports, layering vulnerability assessment with penetration testing is the most practical and defensible cybersecurity strategy.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Not sure whether your business needs a vulnerability assessment or a penetration testing? You\u2019re not alone. While both are essential tools for finding weaknesses in your security, they serve very different purposes. Understanding how they work and when to use them is the first step in strengthening your cybersecurity strategy. In this article, we will [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":8795,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[529],"tags":[],"class_list":["post-8793","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity"],"acf":[],"_links":{"self":[{"href":"https:\/\/interscale.com.au\/blog\/wp-json\/wp\/v2\/posts\/8793","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/interscale.com.au\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/interscale.com.au\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/interscale.com.au\/blog\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/interscale.com.au\/blog\/wp-json\/wp\/v2\/comments?post=8793"}],"version-history":[{"count":1,"href":"https:\/\/interscale.com.au\/blog\/wp-json\/wp\/v2\/posts\/8793\/revisions"}],"predecessor-version":[{"id":11913,"href":"https:\/\/interscale.com.au\/blog\/wp-json\/wp\/v2\/posts\/8793\/revisions\/11913"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/interscale.com.au\/blog\/wp-json\/wp\/v2\/media\/8795"}],"wp:attachment":[{"href":"https:\/\/interscale.com.au\/blog\/wp-json\/wp\/v2\/media?parent=8793"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/interscale.com.au\/blog\/wp-json\/wp\/v2\/categories?post=8793"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/interscale.com.au\/blog\/wp-json\/wp\/v2\/tags?post=8793"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}