Book Image

Penetration Testing Bootcamp

By : Jason Beltrame
Book Image

Penetration Testing Bootcamp

By: Jason Beltrame

Overview of this book

Penetration Testing Bootcamp delivers practical, learning modules in manageable chunks. Each chapter is delivered in a day, and each day builds your competency in Penetration Testing. This book will begin by taking you through the basics and show you how to set up and maintain the C&C Server. You will also understand how to scan for vulnerabilities and Metasploit, learn how to setup connectivity to a C&C server and maintain that connectivity for your intelligence gathering as well as offsite processing. Using TCPDump filters, you will gain understanding of the sniffing and spoofing traffic. This book will also teach you the importance of clearing up the tracks you leave behind after the penetration test and will show you how to build a report from all the data obtained from the penetration test. In totality, this book will equip you with instructions through rigorous tasks, practical callouts, and assignments to reinforce your understanding of penetration testing.
Table of Contents (17 chapters)
Title Page
About the Author
About the Reviewer
Customer Feedback

Delivering the report

With the report completed, it is now time to deliver it to the original stakeholders as our final deliverable. How and to whom you deliver it to should be defined in the original scoping meeting. This is an important process, as the document we create can contain sensitive information that you wouldn't want to be leaked out to anyone. If this information got into the wrong hands, such as hackers, they would know all the weaknesses and exactly where to attack.

The first step is to decide whether the report needs to be delivered electronically, physically, or a combination of both. Let us start with electronically. In this digital age, protecting the documents is of utmost importance. Encryption of some type needs to be considered. This tends to be a symmetric key that is shared over some other type of medium or maybe prearranged earlier in the conversation. This way, if a digital copy leaks out, they would need the key to be able to read it. Also, make sure that the key...