2021-09-11 02:55:17 +02:00
|
|
|
# Pentesting
|
|
|
|
|
Authorized audit of security systems of computers and networks.
|
|
|
|
|
* [Rules of Engagement -- Cheat Sheet](https://sansorg.egnyte.com/dl/bF4I3yCcnt/?)
|
|
|
|
|
* Permissions
|
|
|
|
|
* Scope
|
|
|
|
|
* Rules
|
|
|
|
|
|
|
|
|
|
## Methodology
|
2021-08-23 01:13:54 +02:00
|
|
|
|
|
|
|
|
* Steps
|
|
|
|
|
* Reconnaissance
|
|
|
|
|
* Enumeration/Scanning
|
|
|
|
|
* Gaining Access
|
|
|
|
|
* Privilege Escalation
|
|
|
|
|
* Covering Tracks
|
|
|
|
|
* Reporting
|
|
|
|
|
|
2021-09-11 02:55:17 +02:00
|
|
|
### Reconnaissance
|
2021-08-23 01:13:54 +02:00
|
|
|
* Duck / SearX / metacrawler / google
|
|
|
|
|
* Wikipedia
|
|
|
|
|
* [Shodan.io](http://www.shodan.io)
|
|
|
|
|
* PeopleFinder.com
|
|
|
|
|
* who.is
|
|
|
|
|
* sublist3r
|
|
|
|
|
* hunter.io
|
|
|
|
|
* builtwith.com
|
|
|
|
|
* wappalyzer
|
|
|
|
|
|
2021-09-11 02:55:17 +02:00
|
|
|
### Enumeration
|
2021-08-23 01:13:54 +02:00
|
|
|
* nmap
|
|
|
|
|
* nikto
|
|
|
|
|
* gobuster
|
|
|
|
|
* dirbuster
|
|
|
|
|
* metasploit
|
|
|
|
|
* enum4linux / linpeas / winpeas / linenum
|
|
|
|
|
|
2021-09-11 02:55:17 +02:00
|
|
|
### Exploitation
|
2021-08-23 01:13:54 +02:00
|
|
|
|
2021-09-11 02:55:17 +02:00
|
|
|
### Post Exploitation
|
|
|
|
|
* Pivoting
|
|
|
|
|
#### Privilege Escalation
|
|
|
|
|
* Vertically or horizontally
|
2021-08-23 01:13:54 +02:00
|
|
|
|
2021-09-11 02:55:17 +02:00
|
|
|
#### Covering Tracks
|
2021-08-23 01:13:54 +02:00
|
|
|
|
2021-09-11 02:55:17 +02:00
|
|
|
#### Reporting
|
2021-08-23 01:13:54 +02:00
|
|
|
* Includes
|
|
|
|
|
* Vulnerabilities
|
|
|
|
|
* Criticality
|
|
|
|
|
* Description
|
|
|
|
|
* Countermeasures
|
|
|
|
|
* Finding summary
|
2021-09-11 02:55:17 +02:00
|
|
|
|
|
|
|
|
## Frameworks
|
|
|
|
|
* [OSSTMM3](https://www.isecom.org/OSSTMM.3.pdf)
|
|
|
|
|
* [NIST](https://www.nist.gov/cyberframework)
|
|
|
|
|
* [CAF](https://www.ncsc.gov.uk/collection/caf/caf-principles-and-guidance)
|
