How do you get full value from a penetration test?