Book Image

Penetration Testing with BackBox

By : Stefan Umit Uygur
Book Image

Penetration Testing with BackBox

By: Stefan Umit Uygur

Overview of this book

Related Content you might be interested in

Current Title:

Small book image
Penetration Testing with BackBox
Stefan Umit Uygur
Feb, 2014 | 130 pages
No titles found
Table of Contents (15 chapters)
Penetration Testing with BackBox
Penetration Testing with BackBox
Credits
Credits
About the Author
About the Author
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Starting Out with BackBox Linux
Starting Out with BackBox Linux
A flexible penetration testing distribution
The organization of tools in BackBox
Services
Update
Anonymous
Extras
Completeness, accuracy, and support
Links and contacts
Summary
2
Information Gathering
Information Gathering
Starting with an unknown system
Proceeding with a known system
Summary
3
Vulnerability Assessment and Management
Vulnerability Assessment and Management
Vulnerability scanning
False positives
Summary
4
Exploitations
Exploitations
Exploitation of a SQL injection on a database
Exploiting web applications with W3af
Summary
5
Eavesdropping and Privilege Escalation
Eavesdropping and Privilege Escalation
Sniffing encrypted SSL/TLS traffic
Password cracking
Summary
6
Maintaining Access
Maintaining Access
Backdoor Weevely
Summary
7
Penetration Testing Methodologies with BackBox
Penetration Testing Methodologies with BackBox
Information gathering
Summary
8
Documentation and Reporting
Documentation and Reporting
MagicTree – the auditing productivity tool
Summary
Index
Index

Chapter 3. Vulnerability Assessment and Management

In this chapter, we will learn how to perform the vulnerability scans. We will be setting, configuring, and using OpenVAS to achieve this task. A basic knowledge of Linux shell and OS is required to be more confident with the content of this chapter.

A vulnerability assessment is the process of identifying, quantifying, and prioritizing the vulnerabilities present in a system. So, this will allow us to find the vulnerabilities in our environment.

A vulnerability management procedure is quite similar to the assessment. It helps us in term of solutions to prioritize the potential risk of vulnerabilities found in the assessment process. The management also includes the process of remedying the vulnerabilities.

The vulnerability assessment and management includes the following tasks:

  • Performing a scan against the system/environment we would like to test

  • Generating the full report of the scan

  • Analyzing the report generated

  • Prioritizing each vulnerability...

Previous Section
End of Section 1
Next Section