After reading some research papers, I found out researchers are widely discussed on an issue that existing automation tools used for penetration testing are tend to produce false positive results. So, i was wondering false positive results produced from automation tools are really an issue for penetration tester? Since pen-tester could still identified the real threats by conducting the manual penetration testing. In your opinion, are pen-testers really need an automation tool, that free from false positive results? Or just a tool that good in detecting vulnerabilities (which also included the false positive results)? I am newbie in penetration testing, and apologized if there is any grammar mistake in my text.