Ammar WK, profile picture
Uploaded byAmmar WK
PDF, PPTX2,848 views

Penetration testing

The document discusses penetration testing and related security concepts. It covers topics like vulnerability assessment, security audits, the differences between penetration testing and other assessments, common penetration testing methodologies, and the standard phases of information gathering, network mapping, vulnerability identification, exploitation, privilege escalation, maintaining access and covering tracks.

Embed presentation

Download as PDF, PPTX
SECURITY PENETRATION TESTING TEKNIS PELATIHAN KEAMANAN INFORMASI AHMAD MUAMMAR !(C)2011 | @Y3DIPS
AGENDA SECURITY ASSESSMENT VULNERABILITY ASSESSMENT SECURITY AUDIT PENETRATION TESTING VA V.S PENTEST PENTEST V.S SYSTEM AUDIT AHMAD MUAMMAR !(C)2011 | @Y3DIPS
AGENDA PENETRATION TESTING TYPE SCOPE (AREA) LIMITATIONS PENETRATION TESTING METHODOLOGIES WELL KNOWN STANDARD AHMAD MUAMMAR !(C)2011 | @Y3DIPS
SECURITY ASSESSMENT IS A WAY TO VALIDATE/CHECK THE LEVEL OF SECURITY ON EVERY ASPECT OF IT INFRASTRUCTURE. ALSO TO ENSURE THAT NECESSARY SECURITY CONTROLS ARE INTEGRATED INTO THE DESIGN AND IMPLEMENTATION. TO PREPARE FOR BETTER ENHANCEMENT AHMAD MUAMMAR !(C)2011 | @Y3DIPS
SECURITY ASSESSMENT VULNERABILITY ASSESSMENT A VULNERABILITY ASSESSMENT IS USUALLY CARRIED OUT BY SECURITY VULNERABILITY SCANNER APPLICATION. MOST OF THE PRODUCT TEST TYPE OF OPERATING SYSTEM, APPLICATION, PATCH LEVEL, USER ACCOUNT AND ELSE. VULNERABILITY SCANNER IDENTIFY COMMON SECURITY CONFIGURATION MISTAKES AND COMMON ATTACK AHMAD MUAMMAR !(C)2011 | @Y3DIPS
SECURITY ASSESSMENT SECURITY AUDIT MOST PART ARE CHECKLIST-BASED (CORPORATE SECURITY POLICICES OR REGULATION STANDARDS (ISO) OR PBI) IMPORTANT FOR BEING COMPLIED WITH SECURITY POLICIES, LEGISLATION AND STANDARDS E.G: IS THERE ANY BACKUPS? ANTIVIRUS? AHMAD MUAMMAR !(C)2011 | @Y3DIPS
SECURITY ASSESSMENT PENETRATION TESTING IS WHEN A “HACKER” DO THE ATTACKER WORK. THE ONLY GOAL IS TO GET AS MUCH AS POSSIBLE AND AS DEEP AS POSSIBLE TO BREAK INTO THE SYSTEM. AHMAD MUAMMAR !(C)2011 | @Y3DIPS
VA V.S PENTEST VULNERABILITY ASSESSMENT IDENTIFIES THE “POSSIBLE” VULNERABILITIES (ALSO FALSE POSITIVE) PENETRATION TESTING VALIDATES THE VULNERABILITY AHMAD MUAMMAR !(C)2011 | @Y3DIPS
PENTEST V.S SECURITY AUDITS SECURITY AUDITS IMPORTANT FOR BEING COMPLIED WITH SECURITY POLICIES, LEGISLATION AND STANDARDS PENTEST COMPLEMENT SYSTEM AUDITS AND HELP TO FIX SECURITY THREAT BEFORE AN ATTACKER DISCOVERS IT AHMAD MUAMMAR !(C)2011 | @Y3DIPS
PENETRATION TESTING CHECK SENSITIVE INFORMATION AVAILABLE CHECK WHAT KIND OF PRIVILEGES PENTESTER GAIN CHECK IF POSSIBLE TO ESCALATE PRIVILEGES CHECK IF VULNERABILITY CAN LEAD TO MORE EXPLOITS (ANOTHER APPLICATION, SYSTEM, OR SERVER) AHMAD MUAMMAR !(C)2011 | @Y3DIPS
PENETRATION TESTING TYPE OF PENETRATION TESTING: BLACK BOX: 0 INFORMATION ABOUT THE SYSTEM, MAYBE ONLY THE IP/DOMAIN NAME. FULL ATTACKER PERSPECTIVE GRAY BOX: PARTIAL INFORMATION ABOUT A SYSTEM, SIMULATE ATTACK BY EMPLOYEE, VENDORS. WHITE BOX: SIGNIFICANT INFORMATION ABOUT A SYSTEM, SOURCE CODE/CONFIGURATION REVIEW. AHMAD MUAMMAR !(C)2011 | @Y3DIPS
PENETRATION TESTING NETWORK INFRASTRUCTURE PENTEST WIFI, VOIP, TELEPHONE APPLICATION INFRASTRUCTURE PENTEST WEB, MOBILE SYSTEM INFRASTRUCTURE PENTEST PHYSICAL SECURITY SOCIAL ENGINEETING (PEOPLE) AHMAD MUAMMAR !(C)2011 | @Y3DIPS
PENETRATION TESTING MOST LIMITATIONS TIME SKILLED ACCESS TO EQUIPMENT AHMAD MUAMMAR !(C)2011 | @Y3DIPS
PENETRATION TESTING METHODOLOGY A GUIDELINE FOR SOLVING A PROBLEM, WITH SPECIFIC COMPONENTS SUCH AS PHASES, TASKS, METHODS, TECHNIQUES AND TOOLS AHMAD MUAMMAR !(C)2011 | @Y3DIPS
PENETRATION TESTING WELL KNOWN STANDARD ! AHMAD MUAMMAR !(C)2011 | @Y3DIPS
PENETRATION TESTING SOURCE: ISSAF AHMAD MUAMMAR !(C)2011 | @Y3DIPS
PENETRATION TESTING INFORMATION GATHERING : USING ALL RESOURCES (INTERNET) TO FIND ALL THE INFORMATION ABOUT TARGET, USING TECHNICAL AND NON-TEHCNICAL METHODS SOURCE: ISSAF AHMAD MUAMMAR !(C)2011 | @Y3DIPS
INFORMATION GATHERING NON TECHNICAL SEARCH COMPANY INFO ON SOCIAL NETWORK : LINKEDIN.COM, FACEBOOK SEARCH KEY PERSONAL ACTIVITY: ADMINISTRATOR, PROGRAMMER GOOGLE HACKING AHMAD MUAMMAR !(C)2011 | @Y3DIPS
HANDS ON INFORMATION GATHERING VIA SOCIAL NETWORK INFORMATION GATHERING VIA GOOGLE HACKING AHMAD MUAMMAR !(C)2011 | @Y3DIPS
INFORMATION GATHERING TECHNICAL USING DIG. NSLOOKUP, WHOIS TO FIND INFORMATION AHMAD MUAMMAR !(C)2011 | @Y3DIPS
HANDS ON INFORMATION GATHERING USING DIG INFORMATION GATHERING USING WHOIS AHMAD MUAMMAR !(C)2011 | @Y3DIPS
PENETRATION TESTING NETWORK MAPPING: FOOTPRINT THE NETWORK AND RESOURCES THAT ALREADY GATHER FROM INFORMATION GATHERING. E.G: FIND LIVE HOST, PORT AND SERVICE, NETWORK PERIMETER, OS AND SERVICE FINGERPRINTING SOURCE: ISSAF AHMAD MUAMMAR !(C)2011 | @Y3DIPS
NETWORK MAPPING TOOLS: NMAP, TRACEROUTE, PING MENCOBA NMAP, TRACEROUTE SOURCE: ISSAF AHMAD MUAMMAR !(C)2011 | @Y3DIPS
HANDS ON AHMAD MUAMMAR !(C)2011 | @Y3DIPS
HANDS ON AHMAD MUAMMAR !(C)2011 | @Y3DIPS
PENETRATION TESTING VULNERABILITY IDENTIFICATION : IDENTIFY ALL SERVICES VULNERABILITY (BASED ON VERSION/ BANNER), USING VULNERABILITY SCAN, IDENTIFY ATTACK PATH TOOLS: NMAP, NESSUS SOURCE: ISSAF AHMAD MUAMMAR !(C)2011 | @Y3DIPS
HANDS ON NMAP -SV (DETECT OPEN PORT WITH SERVICE INFO (VERSION)) NMAP -O (DETECT POSSIBLE OS) AHMAD MUAMMAR !(C)2011 | @Y3DIPS
PENETRATION TESTING PENETRATION: TRY TO GAIN UNAUTHORIZED ACCESS BY CIRCUMVENTING THE SECURITY MEASURES TO GET ACCESS,. E.G: FIND POC, CREATE TOOLS, TESTING SOURCE: ISSAF AHMAD MUAMMAR !(C)2011 | @Y3DIPS
PENETRATION TESTING GAINING ACCESS AND PRIVILEGES : GAINING LEAST PRIVILEGE BY DEFAULT USER OR PASSWORD, DEFAULT SETTINGS, PUBLIC SERVICES, TRY TO ESCALATE PRIVILEGES TO SUPERIOR LEVEL (ADMINISTRATOR/ ROOT) USING/CREATING EXPLOIT OR METASPLOIT (FREE) , IMMUNITY CANVAS, CORE IMPACT SOURCE: ISSAF AHMAD MUAMMAR !(C)2011 | @Y3DIPS
HANDS ON USING METASPLOIT USING LOCAL EXPLOIT TO GAIN HIGHER LEVEL PRIVILEGES AHMAD MUAMMAR !(C)2011 | @Y3DIPS
PENETRATION TESTING ENUMERATING FURTHER: OBTAIN PASSWORD (PASSWORD FILE (/ETC/SHADOW, SAM), USER DATABASE), SNIFFING NETWORK, MAPPING INTERNAL NETWORK SOURCE: ISSAF AHMAD MUAMMAR !(C)2011 | @Y3DIPS
HANDS ON CRACKING PASSWORD FILE AHMAD MUAMMAR !(C)2011 | @Y3DIPS
PENETRATION TESTING COMPROMISE REMOTE USERS/SITES: (IF POSSIBLE) TRY TO COMPROMISE REMOTE USER (VPN USERS) TO GET PRIVILEGE TO INTERNAL NETWORK SOURCE: ISSAF AHMAD MUAMMAR !(C)2011 | @Y3DIPS
PENETRATION TESTING MAINTAINING ACCESS: OFTEN NOT PERFORM COVERING TRACKS: OFTEN NOT PERFORM SOURCE: ISSAF AHMAD MUAMMAR !(C)2011 | @Y3DIPS
PENETRATION TESTING VALUE IS ON THE REPORT PENETRATION TESTING SERVICE LEVEL AGREEMENT NON DISCLOSURE AGREEMENT THERE ARE ALWAYS A RISK, E.G : SYSTEM DOWN/ CRASH DURING PENTEST, SLOWDOWN NETWORK AHMAD MUAMMAR !(C)2011 | @Y3DIPS

More Related Content

PPT
Penetration Testing Basics
byRick Wanner
 
PDF
Penetration Testing Execution Phases
byNasir Bhutta
 
PDF
Penetration Testing Guide
byBadawy Abd El-Aziz
 
PPTX
NETWORK PENETRATION TESTING
byEr Vivek Rana
 
PPTX
WTF is Penetration Testing v.2
byScott Sutherland
 
PPTX
Vulnerability Assesment
byDedi Dwianto
 
PDF
Vulnerability Assessment Report
byHarshit Singh Bhatia
 
PPTX
Vulnerability Assessment and Penetration testing
byAaftabKhan14
 
Penetration Testing Basics
byRick Wanner
 
Penetration Testing Execution Phases
byNasir Bhutta
 
Penetration Testing Guide
byBadawy Abd El-Aziz
 
NETWORK PENETRATION TESTING
byEr Vivek Rana
 
WTF is Penetration Testing v.2
byScott Sutherland
 
Vulnerability Assesment
byDedi Dwianto
 
Vulnerability Assessment Report
byHarshit Singh Bhatia
 
Vulnerability Assessment and Penetration testing
byAaftabKhan14
 

What's hot

PDF
Web Application Penetration Testing
byPriyanka Aash
 
PPT
Application Security
byReggie Niccolo Santos
 
PDF
Threat Intelligence
byDeepak Kumar (D3)
 
PPTX
Introduction to penetration testing
byNezar Alazzabi
 
PPTX
Cyber Kill Chain.pptx
byVivek Chauhan
 
PDF
Security testing presentation
byConfiz
 
PPTX
Introduction To Vulnerability Assessment & Penetration Testing
byRaghav Bisht
 
PDF
Threat Modelling
byn|u - The Open Security Community
 
PPTX
Introduction To Exploitation & Metasploit
byRaghav Bisht
 
PPTX
Security testing
byKhizra Sammad
 
PPT
Sql injection
byPallavi Biswas
 
PDF
Types of Threat Actors and Attack Vectors
byLearningwithRayYT
 
PPTX
Owasp top 10 vulnerabilities
byOWASP Delhi
 
PPS
Security testing
byTabăra de Testare
 
PDF
Introduction to Web Application Penetration Testing
byNetsparker
 
PPTX
Vulnerability assessment and penetration testing
byAbu Sadat Mohammed Yasin
 
PPTX
Ethical Hacking n VAPT presentation by Suvrat jain
bySuvrat Jain
 
PPTX
Intrusion detection
byUmesh Dhital
 
PDF
Web application security & Testing
byDeepu S Nath
 
PPTX
What is Penetration Testing?
bybtpsec
 
Web Application Penetration Testing
byPriyanka Aash
 
Application Security
byReggie Niccolo Santos
 
Threat Intelligence
byDeepak Kumar (D3)
 
Introduction to penetration testing
byNezar Alazzabi
 
Cyber Kill Chain.pptx
byVivek Chauhan
 
Security testing presentation
byConfiz
 
Introduction To Vulnerability Assessment & Penetration Testing
byRaghav Bisht
 
Threat Modelling
byn|u - The Open Security Community
 
Introduction To Exploitation & Metasploit
byRaghav Bisht
 
Security testing
byKhizra Sammad
 
Sql injection
byPallavi Biswas
 
Types of Threat Actors and Attack Vectors
byLearningwithRayYT
 
Owasp top 10 vulnerabilities
byOWASP Delhi
 
Security testing
byTabăra de Testare
 
Introduction to Web Application Penetration Testing
byNetsparker
 
Vulnerability assessment and penetration testing
byAbu Sadat Mohammed Yasin
 
Ethical Hacking n VAPT presentation by Suvrat jain
bySuvrat Jain
 
Intrusion detection
byUmesh Dhital
 
Web application security & Testing
byDeepu S Nath
 
What is Penetration Testing?
bybtpsec
 

Viewers also liked

PDF
Nmap scripting engine
byn|u - The Open Security Community
 
PPSX
Sessions and cookies
bywww.netgains.org
 
PDF
Hacking With Nmap - Scanning Techniques
byamiable_indian
 
PPTX
REST & RESTful Web Services
byHalil Burak Cetinkaya
 
PDF
Web Server Hardening
byn|u - The Open Security Community
 
PPT
Cookies and sessions
byLena Petsenchuk
 
PPT
Web Cookies
byapwebco
 
PPTX
Testing RESTful web services with REST Assured
byBas Dijkstra
 
PPTX
Cookie and session
byAashish Ghale
 
PPTX
Web (HTTP) request to response life cycle
byGopakumar Kunduveetil
 
PPT
Mvc architecture
bySurbhi Panhalkar
 
PPT
Apache Web Server Architecture Chaitanya Kulkarni
bywebhostingguy
 
PDF
Basics of telecommunication and networking
byMilan Padariya
 
PPTX
Telecommunication system
byJamilah Abbas
 
PDF
세션 하이재킹
byYu Yongwoo
 
PPT
Web Server Technologies I: HTTP & Getting Started
byPort80 Software
 
PPT
Hacking A Web Site And Secure Web Server Techniques Used
bySiddharth Bhattacharya
 
PPT
Smarty sharing-2
byOndo Simanjuntak
 
KEY
Cmsms, open source & business model
byJean-Christophe Cuvelier
 
KEY
Geek Moot '09 -- Smarty 101
byTed Kulp
 
Nmap scripting engine
byn|u - The Open Security Community
 
Sessions and cookies
bywww.netgains.org
 
Hacking With Nmap - Scanning Techniques
byamiable_indian
 
REST & RESTful Web Services
byHalil Burak Cetinkaya
 
Web Server Hardening
byn|u - The Open Security Community
 
Cookies and sessions
byLena Petsenchuk
 
Web Cookies
byapwebco
 
Testing RESTful web services with REST Assured
byBas Dijkstra
 
Cookie and session
byAashish Ghale
 
Web (HTTP) request to response life cycle
byGopakumar Kunduveetil
 
Mvc architecture
bySurbhi Panhalkar
 
Apache Web Server Architecture Chaitanya Kulkarni
bywebhostingguy
 
Basics of telecommunication and networking
byMilan Padariya
 
Telecommunication system
byJamilah Abbas
 
세션 하이재킹
byYu Yongwoo
 
Web Server Technologies I: HTTP & Getting Started
byPort80 Software
 
Hacking A Web Site And Secure Web Server Techniques Used
bySiddharth Bhattacharya
 
Smarty sharing-2
byOndo Simanjuntak
 
Cmsms, open source & business model
byJean-Christophe Cuvelier
 
Geek Moot '09 -- Smarty 101
byTed Kulp
 

Similar to Penetration testing

PPTX
Vapt life cycle
bypenetration Tester
 
PPTX
Phases of penetration testing
byAbdul Rahman
 
PPTX
Network penetration testing
byImaginea
 
PDF
01_Metasploit - The Elixir of Network Security
byHarish Chaudhary
 
PDF
cyber security ethical hacking training course
byqualitythought33
 
PPT
Netsec
bySaleem Khan
 
PPTX
Combating "Smash and Grab" Hacking with Tripwire Cybercrime Controls
byTripwire
 
PDF
Wm4
byUmang Patel
 
PDF
Osint ashish mistry
byn|u - The Open Security Community
 
PPTX
Penetration Testing vs. Vulnerability Scanning
bySecurityMetrics
 
PDF
Computer security
byMohamed Abdo
 
PDF
Types _of_ Penetration_ Testing_ Training
bypriyanshamadhwal2
 
PDF
Bar Camp 11 Oct09 Hacking
byBarcamp Kerala
 
PDF
IT Vulnerability & Tools Watch 2011
byWASecurity
 
PPS
Workshop on BackTrack live CD
byamiable_indian
 
PDF
Think Like a Hacker: Using Network Analytics and Attack Simulation to Find an...
bySkybox Security
 
PDF
ethical Hack
byViggi Unbeaten
 
PDF
Wm4
byUmang Patel
 
PPTX
Why do THEY want your digital devices?
byESET
 
PPTX
Crafting Super-Powered Risk Assessments by Digital Defense Inc & Veracode
byDigital Defense Inc
 
Vapt life cycle
bypenetration Tester
 
Phases of penetration testing
byAbdul Rahman
 
Network penetration testing
byImaginea
 
01_Metasploit - The Elixir of Network Security
byHarish Chaudhary
 
cyber security ethical hacking training course
byqualitythought33
 
Netsec
bySaleem Khan
 
Combating "Smash and Grab" Hacking with Tripwire Cybercrime Controls
byTripwire
 
Wm4
byUmang Patel
 
Osint ashish mistry
byn|u - The Open Security Community
 
Penetration Testing vs. Vulnerability Scanning
bySecurityMetrics
 
Computer security
byMohamed Abdo
 
Types _of_ Penetration_ Testing_ Training
bypriyanshamadhwal2
 
Bar Camp 11 Oct09 Hacking
byBarcamp Kerala
 
IT Vulnerability & Tools Watch 2011
byWASecurity
 
Workshop on BackTrack live CD
byamiable_indian
 
Think Like a Hacker: Using Network Analytics and Attack Simulation to Find an...
bySkybox Security
 
ethical Hack
byViggi Unbeaten
 
Wm4
byUmang Patel
 
Why do THEY want your digital devices?
byESET
 
Crafting Super-Powered Risk Assessments by Digital Defense Inc & Veracode
byDigital Defense Inc
 

More from Ammar WK

PDF
Advanced Persistent Threat
byAmmar WK
 
PDF
Web Hacking (basic)
byAmmar WK
 
PDF
Hacker? : it's not about Black or White
byAmmar WK
 
PDF
Cybercrime: A threat to Financial industry
byAmmar WK
 
PDF
Mobile hacking, pentest, and malware
byAmmar WK
 
PPT
Handout infosec defense-mechanism-y3dips
byAmmar WK
 
PDF
Bugbounty vs-0day
byAmmar WK
 
PDF
y3dips - Who Own Your Sensitive Information?
byAmmar WK
 
PDF
Network Packet Analysis
byAmmar WK
 
PDF
Packet analysis (Basic)
byAmmar WK
 
PDF
Burp suite
byAmmar WK
 
PDF
Vvdp-fgd-bssn
byAmmar WK
 
PDF
Network security
byAmmar WK
 
PDF
How To [relatively] Secure your Web Applications
byAmmar WK
 
PDF
A Journey Into Pen-tester land: Myths or Facts!
byAmmar WK
 
PDF
Introduction to IOS Application Penetration Testing
byAmmar WK
 
PDF
Pen-testing is Dead?
byAmmar WK
 
PDF
Information Security Professional
byAmmar WK
 
PDF
Layer 7 denial of services attack mitigation
byAmmar WK
 
PDF
How To Become A Hacker
byAmmar WK
 
Advanced Persistent Threat
byAmmar WK
 
Web Hacking (basic)
byAmmar WK
 
Hacker? : it's not about Black or White
byAmmar WK
 
Cybercrime: A threat to Financial industry
byAmmar WK
 
Mobile hacking, pentest, and malware
byAmmar WK
 
Handout infosec defense-mechanism-y3dips
byAmmar WK
 
Bugbounty vs-0day
byAmmar WK
 
y3dips - Who Own Your Sensitive Information?
byAmmar WK
 
Network Packet Analysis
byAmmar WK
 
Packet analysis (Basic)
byAmmar WK
 
Burp suite
byAmmar WK
 
Vvdp-fgd-bssn
byAmmar WK
 
Network security
byAmmar WK
 
How To [relatively] Secure your Web Applications
byAmmar WK
 
A Journey Into Pen-tester land: Myths or Facts!
byAmmar WK
 
Introduction to IOS Application Penetration Testing
byAmmar WK
 
Pen-testing is Dead?
byAmmar WK
 
Information Security Professional
byAmmar WK
 
Layer 7 denial of services attack mitigation
byAmmar WK
 
How To Become A Hacker
byAmmar WK
 

Recently uploaded

PDF
How to Evaluate a High Performance Database
byScyllaDB
 
PDF
Workshop on Sustaining & Growing Open Source Communities - GAS2025
bySammy Fung
 
PPTX
Building Cyber Resilience for 2026: Best Practices for a Secure, AI-Driven Bu...
byYasir Naveed Riaz
 
PPTX
Emancipatory Information Retrieval: Radically Reorienting Information Retriev...
byBhaskar Mitra
 
PDF
Access Control 2025: From Security Silo to Software-Defined Ecosystem
byMemoori
 
PDF
10 Things AI-First Apps Do Differently by iProgrammer Solutions
byiProgrammer Solutions Private Limited
 
PDF
API-First Architecture in Financial Systems
bycyy111112
 
PPTX
Conversational Agents – Building Intelligent Assistants [Virtual Hands-on Wor...
byUiPathCommunity
 
PDF
What Is a Private LLM and Why Enterprises Need It
byAivada
 
DOCX
iRobot Post‑Mortem and Alternative Paths - Discussion Document for Boards and...
byDave Litwiller
 
PPTX
communication-skills-with-technology tools
byJaleto Sunkemo
 
PDF
Fundamentals and Frontiers of Post Quantum Cryptography
byGokul Alex
 
PDF
DMVPN Tunnels to multi sites in networks
byMahboabAliGhalib
 
PDF
Day 3 - Data and Application Security - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
PDF
Real-Time Data Insight Using Microsoft Forms for Business
byElevate
 
PDF
Lab 1.3 Introduction to GCP Automation - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
PDF
Lab 1.5 - Sharing Secrets with GPG ~ 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
PDF
Lab 1.2 Introduction to Azure Automation - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
PPTX
Technology Consulting _ by Slidesgo.pptx
byfh82277
 
PPTX
Software Analysis &Design ethiopia chap-2.pptx
byAbbas484771
 
How to Evaluate a High Performance Database
byScyllaDB
 
Workshop on Sustaining & Growing Open Source Communities - GAS2025
bySammy Fung
 
Building Cyber Resilience for 2026: Best Practices for a Secure, AI-Driven Bu...
byYasir Naveed Riaz
 
Emancipatory Information Retrieval: Radically Reorienting Information Retriev...
byBhaskar Mitra
 
Access Control 2025: From Security Silo to Software-Defined Ecosystem
byMemoori
 
10 Things AI-First Apps Do Differently by iProgrammer Solutions
byiProgrammer Solutions Private Limited
 
API-First Architecture in Financial Systems
bycyy111112
 
Conversational Agents – Building Intelligent Assistants [Virtual Hands-on Wor...
byUiPathCommunity
 
What Is a Private LLM and Why Enterprises Need It
byAivada
 
iRobot Post‑Mortem and Alternative Paths - Discussion Document for Boards and...
byDave Litwiller
 
communication-skills-with-technology tools
byJaleto Sunkemo
 
Fundamentals and Frontiers of Post Quantum Cryptography
byGokul Alex
 
DMVPN Tunnels to multi sites in networks
byMahboabAliGhalib
 
Day 3 - Data and Application Security - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
Real-Time Data Insight Using Microsoft Forms for Business
byElevate
 
Lab 1.3 Introduction to GCP Automation - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
Lab 1.5 - Sharing Secrets with GPG ~ 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
Lab 1.2 Introduction to Azure Automation - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
Technology Consulting _ by Slidesgo.pptx
byfh82277
 
Software Analysis &Design ethiopia chap-2.pptx
byAbbas484771
 

Penetration testing

  • 1.
    SECURITY PENETRATION TESTING TEKNIS PELATIHAN KEAMANAN INFORMASI AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 2.
    AGENDA SECURITY ASSESSMENT VULNERABILITYASSESSMENT SECURITY AUDIT PENETRATION TESTING VA V.S PENTEST PENTEST V.S SYSTEM AUDIT AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 3.
    AGENDA PENETRATION TESTING TYPE SCOPE (AREA) LIMITATIONS PENETRATION TESTING METHODOLOGIES WELL KNOWN STANDARD AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 4.
    SECURITY ASSESSMENT IS AWAY TO VALIDATE/CHECK THE LEVEL OF SECURITY ON EVERY ASPECT OF IT INFRASTRUCTURE. ALSO TO ENSURE THAT NECESSARY SECURITY CONTROLS ARE INTEGRATED INTO THE DESIGN AND IMPLEMENTATION. TO PREPARE FOR BETTER ENHANCEMENT AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 5.
    SECURITY ASSESSMENT VULNERABILITY ASSESSMENT A VULNERABILITY ASSESSMENT IS USUALLY CARRIED OUT BY SECURITY VULNERABILITY SCANNER APPLICATION. MOST OF THE PRODUCT TEST TYPE OF OPERATING SYSTEM, APPLICATION, PATCH LEVEL, USER ACCOUNT AND ELSE. VULNERABILITY SCANNER IDENTIFY COMMON SECURITY CONFIGURATION MISTAKES AND COMMON ATTACK AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 6.
    SECURITY ASSESSMENT SECURITY AUDIT MOST PART ARE CHECKLIST-BASED (CORPORATE SECURITY POLICICES OR REGULATION STANDARDS (ISO) OR PBI) IMPORTANT FOR BEING COMPLIED WITH SECURITY POLICIES, LEGISLATION AND STANDARDS E.G: IS THERE ANY BACKUPS? ANTIVIRUS? AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 7.
    SECURITY ASSESSMENT PENETRATION TESTING IS WHEN A “HACKER” DO THE ATTACKER WORK. THE ONLY GOAL IS TO GET AS MUCH AS POSSIBLE AND AS DEEP AS POSSIBLE TO BREAK INTO THE SYSTEM. AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 8.
    VA V.S PENTEST VULNERABILITYASSESSMENT IDENTIFIES THE “POSSIBLE” VULNERABILITIES (ALSO FALSE POSITIVE) PENETRATION TESTING VALIDATES THE VULNERABILITY AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 9.
    PENTEST V.S SECURITYAUDITS SECURITY AUDITS IMPORTANT FOR BEING COMPLIED WITH SECURITY POLICIES, LEGISLATION AND STANDARDS PENTEST COMPLEMENT SYSTEM AUDITS AND HELP TO FIX SECURITY THREAT BEFORE AN ATTACKER DISCOVERS IT AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 10.
    PENETRATION TESTING CHECK SENSITIVEINFORMATION AVAILABLE CHECK WHAT KIND OF PRIVILEGES PENTESTER GAIN CHECK IF POSSIBLE TO ESCALATE PRIVILEGES CHECK IF VULNERABILITY CAN LEAD TO MORE EXPLOITS (ANOTHER APPLICATION, SYSTEM, OR SERVER) AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 11.
    PENETRATION TESTING TYPE OFPENETRATION TESTING: BLACK BOX: 0 INFORMATION ABOUT THE SYSTEM, MAYBE ONLY THE IP/DOMAIN NAME. FULL ATTACKER PERSPECTIVE GRAY BOX: PARTIAL INFORMATION ABOUT A SYSTEM, SIMULATE ATTACK BY EMPLOYEE, VENDORS. WHITE BOX: SIGNIFICANT INFORMATION ABOUT A SYSTEM, SOURCE CODE/CONFIGURATION REVIEW. AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 12.
    PENETRATION TESTING NETWORK INFRASTRUCTUREPENTEST WIFI, VOIP, TELEPHONE APPLICATION INFRASTRUCTURE PENTEST WEB, MOBILE SYSTEM INFRASTRUCTURE PENTEST PHYSICAL SECURITY SOCIAL ENGINEETING (PEOPLE) AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 13.
    PENETRATION TESTING MOST LIMITATIONS TIME SKILLED ACCESS TO EQUIPMENT AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 14.
    PENETRATION TESTING METHODOLOGY AGUIDELINE FOR SOLVING A PROBLEM, WITH SPECIFIC COMPONENTS SUCH AS PHASES, TASKS, METHODS, TECHNIQUES AND TOOLS AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 15.
    PENETRATION TESTING WELL KNOWNSTANDARD ! AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 16.
    PENETRATION TESTING SOURCE: ISSAF AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 17.
    PENETRATION TESTING INFORMATION GATHERING : USING ALL RESOURCES (INTERNET) TO FIND ALL THE INFORMATION ABOUT TARGET, USING TECHNICAL AND NON-TEHCNICAL METHODS SOURCE: ISSAF AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 18.
    INFORMATION GATHERING NON TECHNICAL SEARCHCOMPANY INFO ON SOCIAL NETWORK : LINKEDIN.COM, FACEBOOK SEARCH KEY PERSONAL ACTIVITY: ADMINISTRATOR, PROGRAMMER GOOGLE HACKING AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 19.
    HANDS ON INFORMATION GATHERINGVIA SOCIAL NETWORK INFORMATION GATHERING VIA GOOGLE HACKING AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 20.
    INFORMATION GATHERING TECHNICAL USING DIG.NSLOOKUP, WHOIS TO FIND INFORMATION AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 21.
    HANDS ON INFORMATION GATHERINGUSING DIG INFORMATION GATHERING USING WHOIS AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 22.
    PENETRATION TESTING NETWORK MAPPING: FOOTPRINT THE NETWORK AND RESOURCES THAT ALREADY GATHER FROM INFORMATION GATHERING. E.G: FIND LIVE HOST, PORT AND SERVICE, NETWORK PERIMETER, OS AND SERVICE FINGERPRINTING SOURCE: ISSAF AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 23.
    NETWORK MAPPING TOOLS: NMAP, TRACEROUTE, PING MENCOBA NMAP, TRACEROUTE SOURCE: ISSAF AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 24.
    HANDS ON AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 25.
    HANDS ON AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 26.
    PENETRATION TESTING VULNERABILITY IDENTIFICATION : IDENTIFY ALL SERVICES VULNERABILITY (BASED ON VERSION/ BANNER), USING VULNERABILITY SCAN, IDENTIFY ATTACK PATH TOOLS: NMAP, NESSUS SOURCE: ISSAF AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 27.
    HANDS ON NMAP -SV(DETECT OPEN PORT WITH SERVICE INFO (VERSION)) NMAP -O (DETECT POSSIBLE OS) AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 28.
    PENETRATION TESTING PENETRATION: TRY TO GAIN UNAUTHORIZED ACCESS BY CIRCUMVENTING THE SECURITY MEASURES TO GET ACCESS,. E.G: FIND POC, CREATE TOOLS, TESTING SOURCE: ISSAF AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 29.
    PENETRATION TESTING GAINING ACCESS AND PRIVILEGES : GAINING LEAST PRIVILEGE BY DEFAULT USER OR PASSWORD, DEFAULT SETTINGS, PUBLIC SERVICES, TRY TO ESCALATE PRIVILEGES TO SUPERIOR LEVEL (ADMINISTRATOR/ ROOT) USING/CREATING EXPLOIT OR METASPLOIT (FREE) , IMMUNITY CANVAS, CORE IMPACT SOURCE: ISSAF AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 30.
    HANDS ON USING METASPLOIT USINGLOCAL EXPLOIT TO GAIN HIGHER LEVEL PRIVILEGES AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 31.
    PENETRATION TESTING ENUMERATING FURTHER: OBTAIN PASSWORD (PASSWORD FILE (/ETC/SHADOW, SAM), USER DATABASE), SNIFFING NETWORK, MAPPING INTERNAL NETWORK SOURCE: ISSAF AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 32.
    HANDS ON CRACKING PASSWORDFILE AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 33.
    PENETRATION TESTING COMPROMISE REMOTE USERS/SITES: (IF POSSIBLE) TRY TO COMPROMISE REMOTE USER (VPN USERS) TO GET PRIVILEGE TO INTERNAL NETWORK SOURCE: ISSAF AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 34.
    PENETRATION TESTING MAINTAINING ACCESS: OFTEN NOT PERFORM COVERING TRACKS: OFTEN NOT PERFORM SOURCE: ISSAF AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 35.
    PENETRATION TESTING VALUE ISON THE REPORT PENETRATION TESTING SERVICE LEVEL AGREEMENT NON DISCLOSURE AGREEMENT THERE ARE ALWAYS A RISK, E.G : SYSTEM DOWN/ CRASH DURING PENTEST, SLOWDOWN NETWORK AHMAD MUAMMAR !(C)2011 | @Y3DIPS