Professional Documents
Culture Documents
B.Voc(CS)-3 (2023-24)
S Roll Categ Contact
No No Reg No. Student Name ory Father's Name Mother's Name No.
1610 5111-2021- PARDEEP 9417972
1 1 493 SINGH BC JAGGA SINGH RANI KAUR 867
1610 5111-2021- AKASHDEEP 9877006
2 2 494 SINGH SC BALJEET SINGH GURPREET KAUR 950
1610 5111-2021- JASKARAN 9815706
3 3 495 SINGH BC AMRIK SINGH KARMJEET KAUR 694
1610 5111-2021- GENER 9915526
4 4 496 OSHEEN GARG AL VIJAY KUMAR PARVEEN BOBY 474
1610 5111-2021- SEHAJPREET GENER GURDEASH 9872350
5 5 497 KAUR AL JASPAL SINGH KAUR 158
1610 5111-2021- HANISH GENER 9878298
6 7 499 BANSAL AL RAJESH KUMAR KIRNA RANI 231
1610 5111-2021- GENER 8699611
7 8 500 MOHIT GARG AL AMAR KUMAR NEERAJ BALA 625
1610 5111-2021- GENER 8699281
8 9 501 YASH AL RAJ KUMAR SUNITA 587
1611 5111-2021- NARESH 9872711
9 0 502 KUMAR SC SUBHASH CHAND KANTA DEVI 963
1611 5111-2021- SUKHDEEP 9417889
10 1 503 SINGH BC JASKARAN SINGH GURJEET KAUR 005
1611 5111-2020- BALWINDER 9872621
11 3 322 HAMEET KAUR SC SATNAM SINGH KAUR 125
1611 5111-2021- GURJEET SAWARNJEET 9815365
12 4 505 SINGH SC FOUJA SINGH KAUR 131
1611 5111-2021- HARJEET 7740000
13 5 506 SINGH BC GURLAL SINGH SARABJIT KAUR 857
1611 5111-2021- KUMARI 9679004
14 6 507 SANJANA SC BULLA SHAH BILLO RANI 088
1611 5111-2021- PARAMJEET 7652809
15 9 510 BEANT KAUR SC BINDER SINGH KAUR 815
1612 5111-2021- SUKHPREET 7657889
16 0 511 KAUR SC BHAPPA SINGH JASVFEER KAUR 499
1612 5111-2021- HUSANDEEP GENER 6280235
17 4 515 SINGH AL TARSEM SINGH SARABJIT KAUR 611
1612 5111-2021- GENER 7814133
18 6 517 KUNAL KUMAR AL RAMESH KUMAR SONIA RANI 788
1612 5111-2021- LOVEPREET GENER 9877419
19 7 556 HARRY AL BHUSHAN KUMAR HARMESH RANI 877
1612 5111-2021- ARSHDEEP GENER 7888648
20 8 554 SHARMA AL DARSHAN KUMAR KRISHMA DEVI 094
1612 5111-2021- GENER 9781102
21 9 558 PARNEET KAUR AL BHUPINDER SINGH RAJINDER KAUR 317
1613 5111-2021- GENER KULWINDER 9780374
22 0 555 HARJOT KAUR AL KULBIR SINGH KAUR 760
1613 5111-2021- HARISH SPORT 1234567
23 3 564 CHANDER S GAJE SINGH POONAM 890
1613 5111-2021- SPORT 1234567
24 5 562 SONU S SOMBIR SUNITA 890
1613 5111-2021- SPORT 5555555
25 6 545 DEEPAK S SOMBIR PUNIA SUNITA 555
26 1613 5111-2021- GAURAV SPORT GAURI SHANKAR PUSHPA BINWAL 9777937
8 480 BINWAL S BINWAL 690
1614 5111-2019- KOMALPREET MANJINDER SINGH RAVNEET KAUR 9592330
27 0 1389 KAUR BC JOURA JOURA 260
Time Table
Time Table 2023-24
S. Name I II III IV V VI
no
1 Gurdeep B.Voc(CS)- PGDCA B.Voc(CS)-3 B.Voc(CS)-3 B.Voc(SD)- MCA-2
kaur 1 FOC IT & E- Penetration Penetration 2+MSC-IT- Artificial
commerce testing testing-LAB 2+ MSc-It Intelligence
Le C++ LAB
Syllabus
4. Action Plain of syllabus to be covered (Monthly distribution, Weekly distribution)
LECTURE DISTRIBUTION
Section A
Penetration testing process:
Pre engagement
Methodologies,
Reporting
Introduction to web applications:
HTTP/S protocol basics,
Encoding
Same origin
Cookies, sessions
Web application proxies
Information gathering:
Gathering information on your target
Infrastructure,
fingerprinting framework and applications
fingerprinting custom applications
enumerating resources
relevant information through misconfigurations
google hacking,
shadon HQ
Cross site scripting:
Cross site scripting
Anatomy of an XSS exploitation
Three type of XSS,
Finding XSS
XSS exploitation,
Mitigation
SQL injection:
Introduction to SQL injection
Finding SQL injection
Exploitation in band SQL injection
Exploiting error based SQL injection
Exploiting blind SQLi,
SQL map
Mitigation strategies,
from SQLi to server takeover
Authentication and authorization
Introduction,
common vulnerabilities,
Bypassing authorization
Session security:
Weakness of session identifier
Session hijacking
Session fixation
Cross site request forgeries
SECTION B
Flash security:
Introduction, Flash security model
Flash vulnerability,
pen testing flash application
HTML5:
Cross origin resource shearing
cross window messaging
Web storage,
web socket
Sand frames
File and resource attacks:
Path traversal,
File inclusion vulnerability
Unrestricted file upload
Other attacks:
Click jacking,
HTTP response splitting
.Business logic flow,
Denial of services
Web services:
Introduction,
web services implementations
The WSDL language and attacks
X Path :
XML documents and databases
X Path,
detecting X Path injection
Exploitation,
best defensive technique
B.VOC(CS Penetratio
29-09- Introduction, Whiteboard
) -3 n testing
2023
B.VOC(CS Penetratio
30-09- common vulnerabilities, Whiteboard
) -3 n testing
2023
B.VOC(CS Penetratio
03-10- Bypassing authorization Whiteboard
) -3 n testing
2023
B.VOC(CS Penetratio
04-10- Weakness of session identifier Whiteboard
) -3 n testing
2023
B.VOC(CS Penetratio
05-10- Session hijacking Whiteboard
) -3 n testing
2023
B.VOC(CS Penetratio
06-10- Session fixation Whiteboard
) -3 n testing
2023
B.VOC(CS Penetratio
07-10- Cross site request forgeries Whiteboard
) -3 n testing
2023
B.VOC(CS Penetratio
10-10- Introduction, Flash security model Whiteboard
) -3 n testing
2023
B.VOC(CS Penetratio
31-10- Denial of services Whiteboard
) -3 n testing
2023
B.VOC(CS Penetratio
01-11- Introduction, Whiteboard
) -3 n testing
2023
B.VOC(CS Penetratio
02-11- web services implementations Whiteboard
) -3 n testing
2023
B.VOC(CS Penetratio
03-11- The WSDL language and attacks Whiteboard
) -3 n testing
2023
B.VOC(CS Penetratio
04-11- XML documents and databases Whiteboard
) -3 n testing
2023
B.VOC(CS Penetratio
06-11- X Path, Whiteboard
) -3 n testing
2023
B.VOC(CS Penetratio
07-11- detecting X Path injection Whiteboard
) -3 n testing
2023
B.VOC(CS Penetratio
10-11- Whiteboard
) -3 n testing
2023 best defensive technique
Software lab
Section- A
Q1.Explain penetration testing and its phases.
Q2. What is SQL injection ? Write about its types. 1*8=8
Section- B
Q3. Explain fingerprinting frame work and its applications.
Q4. Explain proxy server. 1*8=8
Section –C
Q5.(a) Authentication
(b) Session security
(c) XSS 3*3=9
Class-B.Voc(CS)-3 sem-V
Subject- Penetration Testing
MST-1
S Roll
Student Name Total marks(25)
No No
1 16101 PARDEEP SINGH
2 16102 akashdeep singh
3 16103 JASKARAN SINGH
4 16104 osheen garg 21
5 16105 sehajpreet kaur
6 16107 HANISH BANSAL 19
7 16108 MOHIT GARG
8 16109 YASH
9 16110 NARESH KUMAR
10 16111 SUKHDEEP SINGH
11 16113 hAMEET KAUR 20
12 16114 GURJEET SINGH
13 16115 HARJEET SINGH
14 16116 kumari sanjana 22
15 16119 BEANT KAUR 20
16 16120 SUKHPREET KAUR 18
17 16124 husandeep Singh 19
18 16126 kunal kumar
19 16127 lovepreet harry
20 16128 ARSHDEEP sharma
21 16129 PARNEET KAUR 17
22 16130 HARJOT KAUR
23 16133 HARISH CHANDER
24 16135 sonu
25 16136 deepak
26 16138 gaurav binwal
27 16140 KOMALPREET KAUR 15
Class-B.Voc(CS)-3 sem-V
Subject- Penetration Testing
MST-2
S Roll
Student Name Total marks(60)
No No
1 16101 PARDEEP SINGH
2 16102 akashdeep singh
3 16103 JASKARAN SINGH
4 16104 osheen garg 41
5 16105 sehajpreet kaur
6 16107 HANISH BANSAL 20
7 16108 MOHIT GARG 00
8 16109 YASH 00
9 16110 NARESH KUMAR 00
10 16111 SUKHDEEP SINGH 33
11 16113 hAMEET KAUR 43
12 16114 GURJEET SINGH
13 16115 HARJEET SINGH 00
14 16116 kumari sanjana 57
15 16119 BEANT KAUR 49
16 16120 SUKHPREET KAUR
17 16124 husandeep Singh 09
18 16126 kunal kumar
19 16127 lovepreet harry
20 16128 ARSHDEEP sharma
21 16129 PARNEET KAUR 36
22 16130 HARJOT KAUR
23 16133 HARISH CHANDER
24 16135 sonu
25 16136 deepak
26 16138 gaurav binwal
27 16140 KOMALPREET KAUR 29