- A penetration test report allows you to communicate important information about the issues that have been discovered to stakeholders who are responsible for driving remediation efforts to reduce the security exposure of their environment.
- The Executive section will contain a high-level view of the penetration test's engagement, and a high-level overview of the findings and risk rating. The technical section will dive into the deep technical details, and is where you will discuss the tools used, the path taken, and the vulnerabilities discovered, together with the recommendations to remediate them.
- Dradis.
- The Open Web Application Security Project (OWASP).
- Exercising good credential hygiene by limiting high privileged accounts from accessing lower trusted systems and randomizing local administrator accounts.
Learn Penetration Testing
By :
Learn Penetration Testing
By:
Overview of this book
Sending information via the internet is not entirely private, as evidenced by the rise in hacking, malware attacks, and security threats. With the help of this book, you'll learn crucial penetration testing techniques to help you evaluate enterprise defenses.
You'll start by understanding each stage of pentesting and deploying target virtual machines, including Linux and Windows. Next, the book will guide you through performing intermediate penetration testing in a controlled environment. With the help of practical use cases, you'll also be able to implement your learning in real-world scenarios. By studying everything from setting up your lab, information gathering and password attacks, through to social engineering and post exploitation, you'll be able to successfully overcome security threats. The book will even help you leverage the best tools, such as Kali Linux, Metasploit, Burp Suite, and other open source pentesting tools to perform these techniques. Toward the later chapters, you'll focus on best practices to quickly resolve security threats.
By the end of this book, you'll be well versed with various penetration testing techniques so as to be able to tackle security threats effectively
Related Content you might be interested in
Current Title:
Learn Penetration Testing
Table of Contents (21 chapters)
Preface
Introduction to Penetration Testing
Getting Started with Kali Linux
Section 2: Exploitation
Performing Information Gathering
Mastering Social Engineering
Diving into the Metasploit Framework
Understanding Password Attacks
Working with Burp Suite
Attacking Web Applications
Getting Started with Wireless Attacks
Section 3: Post Exploitation
Moving Laterally and Escalating Your Privileges
Antivirus Evasion
Maintaining Control within the Environment
Section 4: Putting It All Together
Reporting and Acting on Your Findings
Where Do I Go from Here?
Assessments
Other Books You May Enjoy
Customer Reviews