Knowledge Base for Penetration Testing
Prereq: Have a Metasploitable2 setup for scanning. OpenVAS OpenVAS is a full-featured vulnerability scanner. Its capabilities include unauthenticated testing, authenticated testing, various high level and low level Internet and industrial protocols, performance tuning for large-scale scans and a powerful internal programming language to implement any type of vulnerability test. The scanner is accompanied by a […]
Hydra is a fast password cracker used to brute-force and gain access to network services like SSH & FTP. Hydra is a brute-forcing tool that helps us to crack passwords of network services. Hydra can perform rapid dictionary attacks against more than 50 protocols. This includes telnet, FTP, HTTP, HTTPS, SMB, databases, and several other […]
John the Ripper is a password-cracking tool that can crack hundreds of hashes, ciphers, and even password-protected files. If you are a pen-tester, cracking passwords is something you will be doing on a daily basis. This can include login passwords, file passwords, and almost anything that is protected using a password. John the Ripper (JtR) […]
Most commonly used Android Debug Bridge (ADB) Shell Commands for Mobile Penetration Testing. The Android Debug Bridge is a programming tool used for the debugging of Android-based devices. The daemon on the Android device connects with the server on the host PC over USB or TCP, which connects to the client that is used by the end-user over TCP.
Question 1 A system analyst decides to run a packet capture after reading about a security breach in an industry newsletter. The engineer uses tcpdump on a Linux workstation and requires that output written onto a file. Evaluate the available command switches for the tcpdump command and determine which accomplishes the desired goal. Solution The […]
OBJECTIVES COVERED Given a scenario, analyze data as part of security monitoring activities. Email remains one of the primary vectors for intrusion and data exfiltration attacks. As an analyst, you should be able to validate that email systems are configured to be as secure as possible and be able to analyze email internet headers and […]
OBJECTIVES COVERED Given a scenario, analyze data as part of security monitoring activities. Given a scenario, implement configuration changes to existing controls to improve security. Network-based monitoring systems can be supplemented with host-based monitoring. While host-based detection methods can also rely on signature-based matching, behavioral analytics is increasingly important to cybersecurity. As an analyst, you […]
OBJECTIVES COVERED Given a scenario, analyze data as part of security monitoring activities. Given a scenario, implement configuration changes to existing controls to improve security. A large amount of security information derives from network security appliances, such as firewalls and intrusion detection systems. As an analyst, you should be able to extract and interpret the […]
Lesson Introduction Security information derives from network packet captures, traffic monitoring, and logs from security appliances and network application services. A monitoring tool is software that collects this data from hosts and network appliances for analysis and is the basis for an alerting system. These tools can be used to identify ongoing cybersecurity attacks and […]
Question 1 An engineer implements the Johari window to classify threats into quadrants. Which quadrant represents risks identified, but discarded? Known unknowns Known knowns Unknown knowns Unknown unknowns Solution The “unknown knowns” quadrant represents risks that are documented or identified but then disregarded or perhaps minimized in importance. Known knowns categorize any threats that are […]
by