| About Blog Cheatsheets Defense Links Offense |
| Offense |
| Code Audit Exploit Hacking Input Validation Metasploit Methods Nmap OSSTMM Test OWASP Webtest Pentest Physical Pentest Backtrack Pentest SQL Inject |
Physical Pentest
|
Pentest Target, Goal, Asset, Team, Test, Scope, Resistance, Posture |
|
Legal! Legal aspects, Contract, Get off jail free |
|
Team Operator, Leader, Planner, Social Engineer, PC Intrusion Specialist, Physical Security Specialist, Surveillance Specialist |
|
Process 0 Kickoff (Contract, Legal, Negotiation Rules of Engagement) 1 Prelimenary Research (Website, Google, Foto, Visit) 2 Evaluate Risks 3 Test Plan (Steps to Goal) 4 Prepare Equipment (Computer, Phone, Camera, Lockpick, ...) 5 Exploiting (Exploiting Path to Goal, Trophy) 6 Hide Traces (Log cleaning, Cover Tracks) 7 Documentation (Report) 8 Presentation 9 Debriefing (Archiving) |
|
Intelligence HUMINT = Human Intelligence SIGINT = Signals Intelligence OSINT = Open Source Intelligence IMINT = Imagery Intelligence |
|
Technical Badges, Entry Points, Social Engineering (trust, ignorance, gullibility, greed, help, be liked), Lockpicking, Shoulder Surfing, Dumpster Diving, Wireless and Bluetooth Attacks, Videocam (for infrared detection), Radio Frequency Tracer, Notebook with WLAN Equipment, |
|
Report Titel page, introduction (2 pages: objectives, constraints, methods and tools), management summary (2 pages), accomplished workings and results, aggregation, recommended measures (keyword, description, measure, deadline, responsible, risk), annex with raw data of the technical tests, always look forward (how can it be improved) |