Knowledge Base for Penetration Testing
Here is a list of things to check for on a manual console review for a firewall, switch, wireless controller, router, etc, and there is not a security best practice guide for that specifc device: Rule base for the use of ANY for SOURCE/DESTINATION/SERVICE or overly permissive, such as allowing large ranges (e.g. x.x.x.x/16) Rules […]
Common Commands Interesting Files Encoding Create, Read, or Update Files SQL Injection Payloads Basic Version Name from __Auth Collation Name Column Names Name and Reset Token Code Review Searching sucks in JD-GUI, so save the decompiled code for Notepad++. In JD-GUI, File > Save All Sources menu. Then open Notepad++ and use the ‘Find in […]
Enumerate IAM https://github.com/andresriancho/enumerate-iam ScoutSuite https://github.com/nccgroup/ScoutSuite More Useful Commands
https://www.technoherder.com/PenTestStudyNotes/common_ports.pdf https://www.technoherder.com/PenTestStudyNotes/Metasploit_Cheat_Sheet.pdf https://www.technoherder.com/PenTestStudyNotes/netcat_cheat_sheet_v1.pdf
https://www.technoherder.com/PenTestStudyNotes/PracticeExams2021.pdf
In any case where an exploit will destabilize a live production system, you should be cleaning up directly after. However, for everything else, you can wait until the report has been handed off to begin your cleanup tasks. The purpose of these tasks is to ensure that there are no artifacts left over that an […]
Asset categorization, also known as asset classification, is the process of placing business assets with similar characteristics into the same group. This helps a business shape how it works with each asset, such as how it prioritizes what assets receive the strongest security protections. From the perspective of a pen tester, categorizing assets is a […]
Scanning Tools Credential Testing Tools Debugging Tools Software Assurance Tools OSINT Tools Wireless Tools Web Proxy Tools Social Engineering Tools Remote Access Tools Networking Tools Mobile Tools Miscellaneous Tools Command & Control Servers Open Source Commercial
Pen Testing Standards and Frameworks Several sets of standards and frameworks have been developed to provide a common base of understanding and expectation for pen tests. Some examples have been listed below. CHECK framework The Open Web Application Security Project (OWASP) Testing Framework Open Source Security Testing Methodology Manual (OSSTMM) Penetration Testing Execution Standard (PTES) […]
by 
