A. Penetration testing is conducted purely for meeting compliance standards while vulnerability testing is focused on online scans

B. Vulnerability testing is more expensive than penetration testing

C. Penetration testing is based on purely online vulnerability analysis while vulnerability testing engages ethical hackers to find vulnerabilities

D. Penetration testing goes one step further than vulnerability testing; while vulnerability tests check for known vulnerabilities, penetration testing adopts the concept of 'in-depth ethical hacking'