• Privacy Policy
  • Contact
198 online academy news
  • Home
  • Courses
    • Students campaign supports
    • Social media campaign supports
    • CEO Branding campaign supports
    • Viral video campaign supports
    • Facebook campaign supports
    • Crowdfunding campaign supports
    • Emergency fundraising in 48 hours
    • Clients acquisition campaign supports
    • Corporate sponsors campaign supports
    • Linkedin campaign supports
    • Community and corporate engagements
    • Film promotion and campaign support
    • Media campaign supports
    • Mass publishing campaign supports
    • Political grassroots campaign supports
    • Youtube campaign supports
    • eCommerce campaign supports
    • Amazon marketing campaign supports
    • Google marketing campaign supports
    • Advocacy campaign supports
  • Educational News
  • Educational Videos
  • Business
  • Corporate Sponsors
    • Corporate sponsors campaign supports
    • How to hire the best corporate foundation building
    • Corporate team building and management
    • How to connect with the right corporate sponsors
    • Community and corporate engagements
    • Learn community and corporate engagement support training
    • How to hire the right corporate community engagement campaign support team
  • PRIVATE COACHING
    • Most powerful private executive CEO coaching
    • Highly creative private CEO coaching
    • Masterful mastermind CEO coaching
    • Private celebrity coaching
    • Private powerful spiritual coaching
  • Scholarships
  • Grants
    • Lists of grant sources
    • Europeans union grant sources
    • Asian nations grant sources
    • North America grant sources
    • Chinese grant sources
    • How to train to become certified grant writer
  • Study Overseas
    • EU Study Opportunity
    • North America Study Opportunity
    • Africa Study Opportunity
  • Exchange Programs
    • EU nations exchange study programs
    • EU special exchange program with African Universities
    • North America and Africa exchange programs
    • African Universities exchange programs
    • South African Universities exchange programs
    • Nigeria Universities exchange programs
  • Press Release
  • Blog
  • Contact us
No Result
View All Result
  • Home
  • Courses
    • Students campaign supports
    • Social media campaign supports
    • CEO Branding campaign supports
    • Viral video campaign supports
    • Facebook campaign supports
    • Crowdfunding campaign supports
    • Emergency fundraising in 48 hours
    • Clients acquisition campaign supports
    • Corporate sponsors campaign supports
    • Linkedin campaign supports
    • Community and corporate engagements
    • Film promotion and campaign support
    • Media campaign supports
    • Mass publishing campaign supports
    • Political grassroots campaign supports
    • Youtube campaign supports
    • eCommerce campaign supports
    • Amazon marketing campaign supports
    • Google marketing campaign supports
    • Advocacy campaign supports
  • Educational News
  • Educational Videos
  • Business
  • Corporate Sponsors
    • Corporate sponsors campaign supports
    • How to hire the best corporate foundation building
    • Corporate team building and management
    • How to connect with the right corporate sponsors
    • Community and corporate engagements
    • Learn community and corporate engagement support training
    • How to hire the right corporate community engagement campaign support team
  • PRIVATE COACHING
    • Most powerful private executive CEO coaching
    • Highly creative private CEO coaching
    • Masterful mastermind CEO coaching
    • Private celebrity coaching
    • Private powerful spiritual coaching
  • Scholarships
  • Grants
    • Lists of grant sources
    • Europeans union grant sources
    • Asian nations grant sources
    • North America grant sources
    • Chinese grant sources
    • How to train to become certified grant writer
  • Study Overseas
    • EU Study Opportunity
    • North America Study Opportunity
    • Africa Study Opportunity
  • Exchange Programs
    • EU nations exchange study programs
    • EU special exchange program with African Universities
    • North America and Africa exchange programs
    • African Universities exchange programs
    • South African Universities exchange programs
    • Nigeria Universities exchange programs
  • Press Release
  • Blog
  • Contact us
No Result
View All Result
198 online academy news
No Result
View All Result
Home MICROSOFT CLOUD TRAINING Microsoft cyber security certificate training

Penetration Testing Part 2

The Editor by The Editor
November 7, 2020
in Microsoft cyber security certificate training
0
425
SHARES
2
VIEWS
Share on FacebookShare on TwitterShare on EMail

Initially thanks for studying the Penetration Testing Half 1, Lets begin with Part2.

Right here I’ll present you conduct a penetration take a look at for a corporation XYZ earlier than beginning the precise penetration take a look at lets see on the sorts of penetration take a look at and the methodology for penetration testing and the instruments out there for conducting a penetration take a look at.

Penetration Testing Methodology:

Typically there are 4 phases to conduct a penetration take a look at as we mentioned earlier than in Part1 are

1. Planning

2. Discovery

3. Assault

4. Reporting

Kinds of penetration take a look at:

1. Black Field

2. White Field

3. Gray Field

Black field:

Black-box testing includes performing a safety analysis and testing with no prior information of the community infrastructure or system to be examined. Testing simulates an assault by a malicious hacker exterior the group’s safety perimeter

White field:

White-box testing includes performing a safety analysis and testing with full information of the community infrastructure comparable to a community administrator would have

Gray field:

Gray-box testing includes performing a safety analysis and testing internally.

Testing examines the extent of entry by insiders throughout the community.

Situation:

A agency named XYZ is consulting with a agency who conducts penetration take a look at as a 3rd celebration. Firm XYZ have to have a black field pen testing on account of some authorized necessities and so as to consider the safety measures positioned to manage the entry.

Now the consulting agency solely has a named XYZ to begin the penetration take a look at for the corporate.

Mr.RAK has been assigned the duty to conduct the pen take a look at on this consulting agency; right here I’ll present you ways the methodology will probably be adopted.

Planning:

MR.RAK ought to have signed NDA in order that findings ought to be saved confidential secondly SLA ought to be current so as to know at what ranges or until what depth ought to the penetration be happen so as to completeness plus the time restrict ought to be talked about earlier than beginning the take a look at

Discovery:

Passive:

Right here the data gathering section is beginning now; good sources can be search engines like google and yahoo, XYZ’s official web site, job postings and extra…

Whereas wanting round on search engines like google and yahoo Mr.RAK found that Firm XYZ has the net portal at [http://www.XYZ-Portal.com] , hmm appears good thus far lets go extra deep, now its time to do nslookup, from nslookup you possibly can uncover what mail server deal with is and what’s the identify and deal with of the identify server for the corporate XYZ these are greater than sufficient at this stage.

Lively:

Right here is the time to do some energetic stuff. Finest method to do is mapping the companies working on the addresses we present in passive section. Finest method to obtain that is port or service scanning, on the earth of data safety there’s a very well-known instrument for port scanning named NMAP.

With nmap we are able to run port scan on the deal with we present in Passive data gathering section, its now time to run the port scan

ethicalHacker/pentesterBox# nmap -A -v wwwDotXYZ-PortaldOTcom -P0 -oA outputfileName

The above command will do an entire port scan on the XYZ-Portal and can generate the out put file named outputfileName to make use of in reporting section.Under is the output of the port scan with nmap.

Beginning Nmap 4.20 ( insecuredotorg ) at 2007-07-02 21:19 GMT

Attention-grabbing ports on [http://www.XYZ-Portal]

PORT STATE SERVICE

445/tcp filtered microsoft-ds

Attention-grabbing ports on [http://www.XYZ-Portal.com]

PORT STATE SERVICE

445/tcp open microsoft-ds

23/tcp open telnet

80/tcp IIS 5.0

PORT STATE SERVICE

445/tcp open microsoft-ds

Nmap completed: 1 IP addresses (1 hosts up) scanned in 19.097 seconds

Right here you possibly can see that the wwwDotXYZ-PortalDotcom is working net server IIS5.0 which exhibits that the server is working on home windows machine.

Right here is the time to run a vulnerability scan on the home windows machine to test the recognized vulnerabilities on the server.

To carry out vulnerability scan there are numerous business and non-commercial instruments out there, amongst them the most effective instrument which I’d suggest is Nessus, it may be downloaded simply. Vulnerability scans to reporting can be in Part3.



Source by Raheel Ahmad

Tags: microsoft cyber security certificateMicrosoft cyber security certificate trainingPartPenetrationTesting
Previous Post

‘It’s reawakened something’: creative ambitions blossom for lockdown 2

Next Post

What is a Webmercial?

Next Post

What is a Webmercial?

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

RECENT NEWS

3 Questions for a Retired Academic Librarian | Inside Higher Ed

January 29, 2023

‘Debilitating’: how effects of pandemic linger on for Britain’s young

January 29, 2023

‘We’re on permanent catch-up’: how Covid has changed young Britons’ lives

January 29, 2023

Can the English Major Be Saved? | Inside Higher Ed

January 29, 2023

Teachers in England at ‘the end of their tether’, says union chief

January 29, 2023

‘They miss out’: soaring rents and insufficient support force more uni students to live with parents

January 29, 2023
Load More

RECENT UPDATES

Top 7 Reasons to Learn to Play the Violin

November 13, 2021

The Purpose of Gospel Music

November 12, 2021

The Seven Different Types of Written Music

November 11, 2021

The State of Modern Music

November 10, 2021

Musical Instruments: Discover Your Love For Music

November 10, 2021

Role of Music in Human Life

November 9, 2021
Load More
198 online academy news

198online Academy News, Allrights Reserved.

Reach us on Facebook, Youtube, Linkedin, Twitter. Instagram

Toll Free: 1 888 642 8433
A Commonwealth of Virginia Company, USA.

RECENT NEWS

3 Questions for a Retired Academic Librarian | Inside Higher Ed

January 29, 2023

‘Debilitating’: how effects of pandemic linger on for Britain’s young

January 29, 2023

RECENT UPDATES

KinderGarten Learning Videos / Kids EDUCATIONAL Videos ABC,123 COLORS, SHAPES and More

January 29, 2023

Learn colour Numbers With color Stack Rings and More Educational videos for Children

January 29, 2023
  • 198 Online Academy News
  • Disclaimer
  • Privacy Policy
  • DMCA
  • Cookie Privacy Policy
  • Terms and Conditions
  • Contact us

© 2023 JNews - Premium WordPress news & magazine theme by Jegtheme.

No Result
View All Result
  • Home
  • Courses
    • Students campaign supports
    • Social media campaign supports
    • CEO Branding campaign supports
    • Viral video campaign supports
    • Facebook campaign supports
    • Crowdfunding campaign supports
    • Emergency fundraising in 48 hours
    • Clients acquisition campaign supports
    • Corporate sponsors campaign supports
    • Linkedin campaign supports
    • Community and corporate engagements
    • Film promotion and campaign support
    • Media campaign supports
    • Mass publishing campaign supports
    • Political grassroots campaign supports
    • Youtube campaign supports
    • eCommerce campaign supports
    • Amazon marketing campaign supports
    • Google marketing campaign supports
    • Advocacy campaign supports
  • Educational News
  • Educational Videos
  • Business
  • Corporate Sponsors
    • Corporate sponsors campaign supports
    • How to hire the best corporate foundation building
    • Corporate team building and management
    • How to connect with the right corporate sponsors
    • Community and corporate engagements
    • Learn community and corporate engagement support training
    • How to hire the right corporate community engagement campaign support team
  • PRIVATE COACHING
    • Most powerful private executive CEO coaching
    • Highly creative private CEO coaching
    • Masterful mastermind CEO coaching
    • Private celebrity coaching
    • Private powerful spiritual coaching
  • Scholarships
  • Grants
    • Lists of grant sources
    • Europeans union grant sources
    • Asian nations grant sources
    • North America grant sources
    • Chinese grant sources
    • How to train to become certified grant writer
  • Study Overseas
    • EU Study Opportunity
    • North America Study Opportunity
    • Africa Study Opportunity
  • Exchange Programs
    • EU nations exchange study programs
    • EU special exchange program with African Universities
    • North America and Africa exchange programs
    • African Universities exchange programs
    • South African Universities exchange programs
    • Nigeria Universities exchange programs
  • Press Release
  • Blog
  • Contact us

© 2023 JNews - Premium WordPress news & magazine theme by Jegtheme.