| About Blog Cheatsheets Defense Links Offense |
| Offense |
| Code Audit Exploit Hacking Input Validation Metasploit Methods Nmap OSSTMM Test OWASP Webtest Pentest Physical Pentest Backtrack Pentest SQL Inject |
Pentest
|
Pentester Creativity and instinct of a hacker, usage of an IT-consultant in ease of handling clients, extensive knowledge of operating systems, applications and vulnerabilities, well-founded programming skills (creation and modification of tools and scripts), systematic processing of tests, clean documentation, writing conclusion report, presenting the results to technicians and management |
|
Preparation Objective of the pentest, classification of the test (internal/external, black-/white-box, agressivity, scope/target objects, conspicuity, starting point/vector), contact persons, access to infrastructure and tools, project timeline, test time windows, legal compliance (contracts, privacy, liability, licences testing tools), workshop, critical findings, emergency strategy |
|
PTES Process 0 Pre-engagement Interactions (Contract, Liabiliities) 1 Intelligence Gathering (Footprinting, Scanning, Fingerprinting) 2 Threat Modeling (Risk Impact, Threats) 3 Vulnerability Analysis (Vulnerabilities) 4 Exploitation (Exploiting) 5 Post Exploitation (Privilege Escalation, Pilvering, Further Penetration) 6 Reporting (Documentation, Presentation) |
|
Report Titel page, introduction (2 pages: objectives, constraints, methods and tools), management summary (2 pages), accomplished workings and results, aggregation, recommended measures (keyword, description, measure, deadline, responsible, risk), annex with raw data of the technical tests, always look forward (how can it be improved) |