Presentation is loading. Please wait.

Presentation is loading. Please wait.

Offensive Security Part 1 Basics of Penetration Testing

Published byEdith Berry Modified over 9 years ago

Similar presentations

Presentation on theme: "Offensive Security Part 1 Basics of Penetration Testing"— Presentation transcript:

1 Offensive Security Part 1 Basics of Penetration Testing
Dennis (Linuz) Maldonado

2 About me Dennis Maldonado, AKA Linuz
My Blog: Tutorials/Walkthroughs News and Events Recordings/Powerpoints Twitter IRC irc.freenode.net -- #CougarCS

3 Definitions A vulnerability is a weakness in a computer system that an attacker can take advantage of. Vulnerability assessment is the act of identifying vulnerabilities for a specific computer or network. An exploit is the code that allows the attacker to take advantage of the vulnerability.

4 Definitions A payload is code or a program that runs after an exploit is successfully executed. A backdoor a method of bypassing normal authentication. A shell allows us to interface with a system, typically through a command line.

5 Vulnerability Assessment
Scan the IP Address or Hostname of the victim to get the ports and services that are running. Identify whether these services are vulnerable Launch an exploit against the vulnerable services and send a payload.

6 Steps in a Penetration Test
Information Gathering Information on the server Any web server? Nmap Vulnerability Identification Nmap version scans/OS scans Other scanning tools Exploitation Bruteforcing Remote Exploits Post Exploitation Reverse shells Persistence Anti-Forensics Etc…

7 Tools BackTrack Linux 5 R2/R3 – Our attacker machine
Nmap Network Scanner – Used for identifying ports and services our victim is running Metasploit Framework – Used for exploiting, generating the payload, and establishing a session with our victim.

8 The Metasploit Project
Metasploit is an open-source framework used for Security development and testing Information gathering and fingerprinting Exploitation/Penetration testing Payload generation and encoding Fuzzing And much more…

9 Steps in compromising Port Scan/Version scans Fingerprint / Open Ports
Exploit + Payload Reverse Shell alpapacas

10 Demo/Workshop ...

11 How to secure yourself Set up a firewall
Windows Firewall Comodo Personal Firewall Install and update your Anti-Virus Microsoft Security Essentials Nod32 Keep your system up to date Actually apply that flash update Be cautious Watch where you internet Don’t just download anything!

12 Want to learn more? Kernel Meltdown Blog Learn how to use Linux
Download BackTrack Linux Learn networking and the tools Use the command line interface Online Resources Metasploit Unleashed (Metasploit Guide) Also check out some forums Security Tube Security Podcasts Security Now by Steve Gibson PaulDotCom Security Weekly Others… Come talk to me

13 Sources BackTrack-Linux The Metasploit Project Nmap
The Metasploit Project Nmap Metasploit Unleashed Security Tube

Download ppt "Offensive Security Part 1 Basics of Penetration Testing"

Similar presentations

Part 2 Penetration Testing. Review 2-minute exercise: RECON ONLY Find 3x IP addresses at the U.S. Merchant Marine Academy Google: “U.S. Merchant Marine.

Part 2 Penetration Testing. Review 2-minute exercise: RECON ONLY Find 3x IP addresses at the U.S. Merchant Marine Academy Google: “U.S. Merchant Marine.
Armitage and Metasploit Penetration Testing Lab

Armitage and Metasploit Penetration Testing Lab
Cybersecurity Training in a Virtual Environment By Chinedum Irrechukwu.

Cybersecurity Training in a Virtual Environment By Chinedum Irrechukwu.
A Complete Tool For System Penetration Testing Presented By:- Mahesh Kumar Sharma B.Tech IV Year Computer Science Roll No. :- CS09047.

A Complete Tool For System Penetration Testing Presented By:- Mahesh Kumar Sharma B.Tech IV Year Computer Science Roll No. :- CS09047.
System Security Scanning and Discovery Chapter 14.

System Security Scanning and Discovery Chapter 14.
ITP 457 Network Security Network Hacking 101. Hacking Methodology (review) 1. Gather target information 2. Identify services and ports open on the target.

ITP 457 Network Security Network Hacking 101. Hacking Methodology (review) 1. Gather target information 2. Identify services and ports open on the target.
Defense-in-Depth Against Malicious Software Jeff Alexander IT Pro Evangelist Microsoft Australia

Defense-in-Depth Against Malicious Software Jeff Alexander IT Pro Evangelist Microsoft Australia
Vulnerability Analysis Borrowed from the CLICS group.

Vulnerability Analysis Borrowed from the CLICS group.
CSCI 530L Vulnerability Assessment. Process of identifying vulnerabilities that exist in a computer system Has many similarities to risk assessment Four.

CSCI 530L Vulnerability Assessment. Process of identifying vulnerabilities that exist in a computer system Has many similarities to risk assessment Four.
Scanning February 23, 2010 MIS 4600 – MBA 5880 - © Abdou Illia.

Scanning February 23, 2010 MIS 4600 – MBA © Abdou Illia.
1 Colorado University Guest Lecture: Vulnerability Assessment Chris Triolo Spring 2007.

1 Colorado University Guest Lecture: Vulnerability Assessment Chris Triolo Spring 2007.
Computer Security and Penetration Testing

Computer Security and Penetration Testing
Browser Exploitation Framework (BeEF) Lab

Browser Exploitation Framework (BeEF) Lab
1 GFI LANguard Network Security Scanner. 2 Contents Introduction Features Source & Installation Testing environment Results Conclusion.

1 GFI LANguard Network Security Scanner. 2 Contents Introduction Features Source & Installation Testing environment Results Conclusion.
1 Computer Security: Protect your PC and Protect Yourself.

1 Computer Security: Protect your PC and Protect Yourself.
Penetration Testing Edmund Whitehead Rayce West. Introduction - Definition of Penetration Testing - Who needs Penetration Testing? - Penetration Testing.

Penetration Testing Edmund Whitehead Rayce West. Introduction - Definition of Penetration Testing - Who needs Penetration Testing? - Penetration Testing.
Dennis  Application Security Specialist  WhiteHat Security  Full-Time Student  University of Houston – Main Campus ▪ Computer.

Dennis  Application Security Specialist  WhiteHat Security  Full-Time Student  University of Houston – Main Campus ▪ Computer.
W3af LUCA ALEXANDRA ADELA – MISS 1. w3af  Web Application Attack and Audit Framework  Secures web applications by finding and exploiting web application.

W3af LUCA ALEXANDRA ADELA – MISS 1. w3af  Web Application Attack and Audit Framework  Secures web applications by finding and exploiting web application.
1 Objectives Windows Firewalls with Advanced Security Bit-Lock Update and maintain your clients using Windows Server Update Service Microsoft Baseline.

1 Objectives Windows Firewalls with Advanced Security Bit-Lock Update and maintain your clients using Windows Server Update Service Microsoft Baseline.
Introduction to InfoSec – Recitation 15 Nir Krakowski (nirkrako at post.tau.ac.il) Itamar Gilad (itamargi at post.tau.ac.il)

Introduction to InfoSec – Recitation 15 Nir Krakowski (nirkrako at post.tau.ac.il) Itamar Gilad (itamargi at post.tau.ac.il)

Similar presentations

Ads by Google