Download to read offline
Outline of Penetration Testing
This document outlines the modules of a hands-on penetration testing course. The 9 modules cover: 1) setting up labs; 2) planning penetration tests; 3) using Kali Linux; 4) information gathering techniques; 5) scanning with tools like Nmap; 6) vulnerability scanning with OpenVAS and Nessus; 7) ARP spoofing tools; 8) exploitation tools and techniques; and 9) web application penetration testing tools like Burp Suite. The course uses virtual machines like Windows, Linux, and Kali Linux and teaches methodologies for planning, assessing, and reporting on penetration tests.
More Related Content
![[OWASP Poland Day] A study of Electron security](https://cdn.slidesharecdn.com/ss_thumbnails/lucacarettonia-study-of-electron-security-171003211450-thumbnail.jpg?width=640&height=640&fit=bounds){kind=icon}
![[OWASP Poland Day] Security knowledge framework](https://cdn.slidesharecdn.com/ss_thumbnails/skf-preso-171004061039-thumbnail.jpg?width=640&height=640&fit=bounds)
![[OWASP Poland Day] Application frameworks' vulnerabilities](https://cdn.slidesharecdn.com/ss_thumbnails/wd-applicationframeworksvulns-pub-171003211201-thumbnail.jpg?width=640&height=640&fit=bounds)
![[OWASP Poland Day] Saving private token](https://cdn.slidesharecdn.com/ss_thumbnails/pawelbochenskisecuretoken2-171003211501-thumbnail.jpg?width=640&height=640&fit=bounds)
![[OWASP Poland Day] Application security - daily questions & answers](https://cdn.slidesharecdn.com/ss_thumbnails/owasp-applicationsecurity-171003211500-thumbnail.jpg?width=640&height=640&fit=bounds)
Similar to Outline of Penetration Testing
Outline of Penetration Testing
- 1. Hand-On-Penetration Testing By CyberSecAcadmey Bilal Mazhar CEH, ECSA , ISO 27001 auditor
- 2. Disclaimer This Is onlyfor Educational purpose Author or CyberSecAcadmey is not responsible
- 3. Outline : • Module1 : Setting up with Labs • Module 2 : Planning and Scoping your Pen testing Project • Module 3 : Up and running Kali Linux • Module 4 : Information gathering with kali Linux • Module 5 : Scanning with kali Linux • Module 6 : Vulnerability Scanning • Module 7 : ARP Spoofing • Module 8 : Exploitation • Module 9 : Web Application Pen testing
- 4. Module 1 :Setting up with Labs • Installation of VMware • Installation of Virtual box • Lab Requires : 1 : Windows XP , 7 , 8 , 10 2 : Windows server 2008 , 2012 3 : Linux 4 : kali Linux 5 : I will use parrot OS ! 6 : DVWA , other machines
- 5. Module 2 :Planning and Scoping your Pen testing Project • What is pen testing and it types • Type of penetration testing and its variations • Penetration Methodology Phase 1 : planning phase Phase 2 : Assessment Phase 3 : Reporting and preparation • You have ask questions regarding what you are pen testing like : Web penetration testing , Network penetration testing etc.
- 6. Module 3: Upand running Kali Linux • Changing passwords • Search files • SSH • Apache server • Starting and stopping services
- 7. Module 4 :Information gathering with kali Linux • Google Hacking • Google Hacking Data Base • Email Harvesting • Recong-Ng • Net Craft • Maltego • Much More …. !
- 8. Module 5 :Scanning with kali Linux • Intro to scanning • Type scanning • Legal Implications • Nmap • Scan all ports • Service enumeration • Zenmap • Sparta
- 9. Module 6 :Vulnerability Scanning • Open VAS • Nessus • Nexpose
- 10. Module 7 :ARP Spoofing • Cain abel • Ettercap • SSl strip • Traffic Forgery • SSH Downgrade Attack
- 11. Module 8 :Exploitation • PDF exploitation • Cisco Exploits • Bypassing Antivirus • Metasploit • Client side attack • SMB scanning • Excel can be best weapon of choice
- 12. Module 9 :Web Application Penetration • Burp suit • Wapplyzer • Sql injection • XSS • BeFF • iFrames injection • File Injection
- 13. Thank you Press thebell icon