Welcome to Scribd!

Pentest - 101 by Matthias Vallentin

Uploaded by

0% found this document useful (0 votes)

30 views10 pages

Penetration testing involves actively testing a network or system's security by simulating attacks from a malicious user. There are various methodologies for penetration testing, including the Open Source Security Testing Methodology Manual (OSSTMM) and the Information Systems Security Assessment Framework (ISSAF). Example tools that can be used in penetration testing include Nmap for network mapping, Nessus and commercial tools for vulnerability identification, and Metasploit for penetration. The document provides examples of methodologies, frameworks, and tools used in penetration testing.

Original Description:

Pentesting

Original Title

Pentest_101 by Matthias Vallentin

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

30 views10 pages

Pentest - 101 by Matthias Vallentin

Uploaded by

Andres Valarezo

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 10

Search inside document

Penetration Testing 101

Definitions, Methodologies, and Examples

Matthias Vallentin
vallentin@icsi.berkeley.edu

Penetration Test
Method to evaluate security of a network/computer system
Simulates an attack conducted by a malicious user (e.g. cracker)
Active analysis of the target, testing for
Vulnerabilities
Misconfigurations
Operational weaknesses

Security issues are thoroughly assessed and presented

Methodologies
Open Source Security Testing Methodology Manual (OSSTMM)
Peer-reviewed international standard for security testing

Information Systems Security Assessment Framework (ISSAF)

Fairly new categorization of security assessment into domains

NIST Guideline on Network Security Testing

Likely to be accepted by regulatory agencies

Source: http://en.wikipedia.org/wiki/Penetration_test

Web Application Security

Open Web Application Security Project (OWASP)
Open-source application security project
Not affiliated with any technology company

Notable documents
OWASP Guide - how to build secure web applications
OWASP Top 10 - current 10 most critical security flaws

OSSTMM Test Types

Blind: War Gaming, Role Play
Double Blind: Penetration Test
Gray Box: often a Self Assessment
Double Gray Box: also White Box
Tandem: also Crystal Box
Reversal: Red Team
Source: The Vision of the OSSTMM

ISAFF
Approach
&
Methodology

Source: ISSAF draft 0.2

Example Toolkit
Information Gathering:
old:

Google, whois, zone-transfers, reverse DNS lookups

shiny: Maltego, Metagoofil, CentralOps.net, DigitalPoint.com,

DomainTools.com

Network Mapping
basic: nmap, Hping3, p0f, Xprobe2, amap
shiny: trigger SMTP bounces, Brute force HTTP vhosts, watch
outbound DNS, email users

Example Toolkit
Vulnerability Identification
basic: Nessus, commercial tools
web:

hackvertor, Nikto, WFuzz, w3af, HttpRecon, WebScarab

Penetration
basic: milw0rm, bugtraq, exploit databases
shiny: Metasploit, FastTrack, Inguma, Karma, wesside-ng

Example Toolkit
Privilege Escalation
basic: john, Hydra, Medusa, Ettercap, tcpdump
nice: Scapy/Scruby, FPGAs (WPA2), Rainbowcrack, NTLM relays,
social engineering, dhcpcd -h WPAD -i eth0

Maintaining Access
basic:

VNC, BO2k, hxdef, Adore-ng, netcat cronjob

tunneling: CryptCat, nstx, socat, vstt, ht[sc], icmptx

FIN
Matthias Vallentin
http://matthias.vallentin.cc
http://feeds.feedburner.com/security-loop

VAPT Interview Questions and Answers
Document110 pages
VAPT Interview Questions and Answers
tanmay
75% (4)
Security As A Process in Software Development Lifecycle v2.0
Document39 pages
Security As A Process in Software Development Lifecycle v2.0
shruti
No ratings yet
A Penetration Test
Document7 pages
A Penetration Test
SALMANRIZ
No ratings yet
Pentester and Network Security For A Secure Modern Society
Document8 pages
Pentester and Network Security For A Secure Modern Society
Ofrates Siringan
No ratings yet
Penetration Test Process and Types Facts
Document5 pages
Penetration Test Process and Types Facts
Kimberly Pineda
No ratings yet
Paper 11
Document5 pages
Paper 11
mihirinsta8
No ratings yet
Penetetration Testing Rev1
Document15 pages
Penetetration Testing Rev1
Edy Susanto
No ratings yet
Analysis of Incident Response Tactics For The Extreme Insecure Website
Document18 pages
Analysis of Incident Response Tactics For The Extreme Insecure Website
Amanda
No ratings yet
Sistemas de Numeracao
Document2 pages
Sistemas de Numeracao
Tiago Vieira
No ratings yet
12 Penetration Testing Guidance
Document30 pages
12 Penetration Testing Guidance
rirob51088
No ratings yet
Bibek Chaudhary
Document3 pages
Bibek Chaudhary
BIBEK CHAUDHARY BSc (Hons) in Networking and IT Security
No ratings yet
Crisalis Deliverable D5.1
Document65 pages
Crisalis Deliverable D5.1
splustec
No ratings yet
Sample Report - Test Plan
Document11 pages
Sample Report - Test Plan
Azfar Raza
100% (1)
Final Print
Document117 pages
Final Print
Chandan Srivastava
No ratings yet
Research Plan
Document6 pages
Research Plan
Prince Opoku
No ratings yet
PS 32 - Rak 2020
Document11 pages
PS 32 - Rak 2020
einstein.ortiz27
No ratings yet
Breach and Attack Simulations
Document11 pages
Breach and Attack Simulations
Rama Raymond
No ratings yet
Pentest Guide Werty Asdf
Document7 pages
Pentest Guide Werty Asdf
Chirri Corp
No ratings yet
Ethical Hacking and Countermeas - by International Council of Ele PDF
Document1,304 pages
Ethical Hacking and Countermeas - by International Council of Ele PDF
Xade Eulor
100% (1)
Vulnerability Assessment and Penetration Testing IJERTV10IS050111
Document6 pages
Vulnerability Assessment and Penetration Testing IJERTV10IS050111
Vamsi Krishna
No ratings yet
Pen Testing Basics
Document153 pages
Pen Testing Basics
Christopher C. Cheng
100% (2)
Presnted by Ashwani (09IT16) Navneet (09IT48)
Document21 pages
Presnted by Ashwani (09IT16) Navneet (09IT48)
Ashwani Kumar
No ratings yet
Penetration Testing Explained
Document23 pages
Penetration Testing Explained
Tarun Sahu
No ratings yet
CITS1003 6 Vulnerabilities
Document34 pages
CITS1003 6 Vulnerabilities
Phyo Min
No ratings yet
Vol 7 Issue 8 M 03
Document10 pages
Vol 7 Issue 8 M 03
laksmanmalla64
No ratings yet
Web Security Audit Basics
Document20 pages
Web Security Audit Basics
rzpjck6xrm
No ratings yet
Top 30 Penetration Tester (Pentester) Interview Questions and Answers
Document13 pages
Top 30 Penetration Tester (Pentester) Interview Questions and Answers
syed muffassir
100% (1)
Towards Pentesting Automation Using The Metasploit Framework
Document8 pages
Towards Pentesting Automation Using The Metasploit Framework
Yusuf Kılıç
No ratings yet
Testing Production Systems Safely Common Precautio
Document6 pages
Testing Production Systems Safely Common Precautio
Manjiri Pawar
No ratings yet
Increasing Value BSIDESDFW
Document78 pages
Increasing Value BSIDESDFW
LARES
No ratings yet
Information Security
Document9 pages
Information Security
ascii02
No ratings yet
Security Testing FAQ
Document25 pages
Security Testing FAQ
joseph
No ratings yet
A Complete Guide To Penetration Testing
Document4 pages
A Complete Guide To Penetration Testing
raghunandhan.cv
No ratings yet
03 - CO1-ethical Hacking Terminologies
Document53 pages
03 - CO1-ethical Hacking Terminologies
Woy
No ratings yet
Chapter 5 Pen Testing Android
Document17 pages
Chapter 5 Pen Testing Android
Bouslah Yasser
No ratings yet
APPLICATION SECURITY ASSESSMENT - Draft - Ver01
Document42 pages
APPLICATION SECURITY ASSESSMENT - Draft - Ver01
An Le
No ratings yet
Penetration Testing: Literature Review
Document5 pages
Penetration Testing: Literature Review
Z k
No ratings yet
Penetration Testing: Essay 11
Document31 pages
Penetration Testing: Essay 11
Abhilash_Sahu_1125
No ratings yet
Post Breach Forensic State
Document13 pages
Post Breach Forensic State
alfred.x.andrews
No ratings yet
Selection of Penetration Testing Methodologies - A Comparison and
Document9 pages
Selection of Penetration Testing Methodologies - A Comparison and
flavio
No ratings yet
Full Doc Security Evaluation
Document87 pages
Full Doc Security Evaluation
Sagar Paul'g
No ratings yet
Commix Detecting and Exploiting Command Injection Flaws PDF
Document10 pages
Commix Detecting and Exploiting Command Injection Flaws PDF
KETEMA
No ratings yet
CSAC Cyber Security Assessment Center Print 9AKK107991A3368
Document8 pages
CSAC Cyber Security Assessment Center Print 9AKK107991A3368
Carlos Lucero
0% (1)
Commix Detecting and Exploiting Command Injection Flaws PDF
Document10 pages
Commix Detecting and Exploiting Command Injection Flaws PDF
KETEMA
No ratings yet
Unit 9 Penetration Testing
Document29 pages
Unit 9 Penetration Testing
zalak.desai
No ratings yet
INT 407 Syn
Document4 pages
INT 407 Syn
Æ Reddy Vïñød
No ratings yet
Pentest Methodologies
Document19 pages
Pentest Methodologies
OscarPerez
No ratings yet
Rapid7 Penetration Testing Services Brief PDF
Document2 pages
Rapid7 Penetration Testing Services Brief PDF
ellococareloco
No ratings yet
Effective Penetration Testing
Document8 pages
Effective Penetration Testing
flaviodemenezes
No ratings yet
Exploring Vulnerability Assessments and Penetration Testing For Robust Cybersecurity
Document3 pages
Exploring Vulnerability Assessments and Penetration Testing For Robust Cybersecurity
dumitrescu.alexandru46
No ratings yet
10-Security-Threat-Modeling (Noppa)
Document19 pages
10-Security-Threat-Modeling (Noppa)
dont4get
No ratings yet
External Penetration Testing and Social Engineering Digital Shadowing
Document14 pages
External Penetration Testing and Social Engineering Digital Shadowing
ghofranah12
No ratings yet
Assessment
Document50 pages
Assessment
Pham Dinh Chung
No ratings yet
Prnetration Testing Report
Document15 pages
Prnetration Testing Report
Sachin Chakarvarti
No ratings yet
Mastering Kali Linux For Advanced Penetration Testing Sample Chapter
Document37 pages
Mastering Kali Linux For Advanced Penetration Testing Sample Chapter
Packt Publishing
100% (1)
Pentretion Testing
Document15 pages
Pentretion Testing
Jimmyko
No ratings yet
Penetration Testing Fundamentals-2: Penetration Testing Study Guide To Breaking Into Systems
From Everand
Penetration Testing Fundamentals-2: Penetration Testing Study Guide To Breaking Into Systems
Devi Prasad
No ratings yet
Penetration Testing Fundamentals -1: Penetration Testing Study Guide To Breaking Into Systems
From Everand
Penetration Testing Fundamentals -1: Penetration Testing Study Guide To Breaking Into Systems
Devi Prasad
No ratings yet
Kali Linux, Ethical Hacking And Pen Testing For Beginners
From Everand
Kali Linux, Ethical Hacking And Pen Testing For Beginners
BHARAT NISHAD
No ratings yet
System-on-Chip Security: Validation and Verification
From Everand
System-on-Chip Security: Validation and Verification
Farimah Farahmandi
No ratings yet