Penetration testing – detecting and exploiting vulnerabilities Training Course

How to Test Network and Service Security

• Penetration testing – what is it?
• Penetration test vs. audit – similarities, differences, and what is appropriate?
• Practical challenges – what can go wrong?
• Test scope – what do we want to check?
• Sources of best practices and recommendations

Penetration Testing – Reconnaissance

• OSINT – obtaining information from public sources
• Passive and active methods of network traffic analysis
• Identifying services and network topology
• Security systems (firewalls, IPS/IDS systems, WAF, etc.) and their impact on tests

Penetration Testing – Vulnerability Discovery

• Identifying systems and their versions
• Finding vulnerabilities in systems, infrastructure, and applications
• Assessing vulnerabilities – "what will hurt?"
• Exploit sources and customization possibilities

Penetration Testing – Attack and Takeover

• Types of attacks – how they are conducted and their consequences
• Attacking using remote and local exploits
• Attacks on network infrastructure
• Reverse shell – how to manage a taken-over system
• Privilege escalation – how to become an administrator
• Ready-made "hacking tools"
• Analyzing the taken-over system – interesting files, saved passwords, private data
• Special cases: web applications, Wi-Fi networks
• Social engineering – how to "break" a human if systems can't be breached?

Penetration Testing – Footprint Removal and Maintaining Access

• Logging systems and activity monitoring
• Cleaning logs and removing footprints
• Backdoor – how to leave yourself an open entry point

Penetration Testing – Summary

• Preparing the report and its structure
• Submitting and consulting the report
• Verifying the implementation of recommendations