Dubai Call Girls Naija O525547819 Call Girls In Dubai Home Made
How to-start-your-career-in-pen testing
1. How to start your career in
PenTesting
Mahmoud Ashraf Abdelkader
Product Security Associate @SP Team
2. Agenda
1. What’s Penetration Testing?
2. What Can be tested?
3. Penetration Test Steps.
4. Facts about Penetration Test.
5. How Can i Practice?
6. Questions.
3. What’s Penetration Testing?
The PenTest is a Consultation Service that companies doing to improve their
security NOT TO PREVENT.
The Penetration Tester is doing an assessment to test the Process or
service or the infrastructure from the security flaws or issues or
vulnerability that has an impact to the company or Business.
Pentest Can be a White-Box or Black-Box or Gray-Box as per what the
customer gives you…
Also Can be Internal or External or BOTH
4. What Can be tested?
1. Web & Mobile Apps
2. Network Services
3. Active Directory
4. APIs
5. Cloud
6. ICS/OT
7. IoT & Firmware
8. Security Appliances
Take a step to choose one of them and Improve to get knowledge of
others…
5. Penetration Test Steps.
1. The Engagement
2. Planning & Reconnaissance
3. Discovery and Scanning
4. Vulnerability Assessment
5. Exploitation
6. Final Analysis/Report
7. Remediation
6. Facts about Penetration Test.
1. You’ll not gonna to find a bug it’s a complex WEB OR NETWORK..!
2. You have to look for which you need to investigate further
3. Just focus on what will make impact on business of company
7. How Can i Practice?
- Solving Labs
1. HackTheBox (Recommended)
2. TryHackMe (Recommended)
3. CyberTalents
4. PentesterLab
- Try to Build your own Labs and Network…
1. Network Installed and Connected
2. Active Directory and Linux Installed and Connected (Option)
3. Create a web application (Option)