killchain-compendium/pentesting.md

59 lines
1.2 KiB
Markdown
Raw Normal View History

2021-09-11 02:55:17 +02:00
# Pentesting
2021-09-27 00:48:14 +02:00
* [Pentesting Execution Standard](http://www.pentest-standard.org/index.php/Main_Page)
2021-09-11 02:55:17 +02:00
Authorized audit of security systems of computers and networks.
* [Rules of Engagement -- Cheat Sheet](https://sansorg.egnyte.com/dl/bF4I3yCcnt/?)
* Permissions
* Scope
* Rules
## Methodology
2021-08-23 01:13:54 +02:00
* Steps
* Reconnaissance
* Enumeration/Scanning
* Gaining Access
* Privilege Escalation
* Covering Tracks
* Reporting
2021-09-11 02:55:17 +02:00
### Reconnaissance
2021-08-23 01:13:54 +02:00
* Duck / SearX / metacrawler / google
* Wikipedia
* [Shodan.io](http://www.shodan.io)
* PeopleFinder.com
* who.is
* sublist3r
* hunter.io
* builtwith.com
* wappalyzer
2021-09-11 02:55:17 +02:00
### Enumeration
2021-08-23 01:13:54 +02:00
* nmap
* nikto
* gobuster
* dirbuster
* metasploit
* enum4linux / linpeas / winpeas / linenum
2021-09-11 02:55:17 +02:00
### Exploitation
2021-08-23 01:13:54 +02:00
2021-09-11 02:55:17 +02:00
### Post Exploitation
* Pivoting
#### Privilege Escalation
* Vertically or horizontally
2021-08-23 01:13:54 +02:00
2021-09-11 02:55:17 +02:00
#### Covering Tracks
2021-08-23 01:13:54 +02:00
2021-09-11 02:55:17 +02:00
#### Reporting
2021-08-23 01:13:54 +02:00
* Includes
* Vulnerabilities
* Criticality
* Description
* Countermeasures
* Finding summary
2021-09-11 02:55:17 +02:00
## Frameworks
* [OSSTMM3](https://www.isecom.org/OSSTMM.3.pdf)
* [NIST](https://www.nist.gov/cyberframework)
* [CAF](https://www.ncsc.gov.uk/collection/caf/caf-principles-and-guidance)