Results 1 to 2 of 2

Thread: Penetration testing -- what do you guys do

  1. #1
    Just burned his ISO
    Join Date
    Oct 2010
    Location
    India
    Posts
    3

    Default Penetration testing -- what do you guys do

    Hello everyone.

    I just want to get a basic idea of what to do in a penetration test.

    Suppose, if i get a project, how will i report the vulns to the owner.

    Some helpful links would be enough.

    These are the things i'm thinking of doing in it :

    1. Web app security check for some common vuln. like SQLi, XSS, LFI, RFI etc.

    2. NMAP scan to check for open ports and the services running on it.

    3. Scanning with some vuln. scanners like Acunetix, w3af, Nessus and Nikto.

    4. Finding exploits for the services running on it.

    Is there something else i need to do?
    And could anyone help with the report thing?

  2. #2
    Super Moderator Archangel-Amael's Avatar
    Join Date
    Jan 2010
    Location
    Somewhere
    Posts
    8,012

    Default Re: Penetration testing -- what do you guys do

    This is not the place to learn how to do penetration testing.
    Having said that, there are plenty of tutorial on the net that will aid you. You should definately start looking for some sort of methodologies to follow. There is no 1 perfect one, so it is up to the person doing the testing take what they need from the various ones available and to even create their own if needed.
    http://en.wikipedia.org/wiki/Penetra...#Methodologies
    http://www.pentest-standard.org/index.php/Main_Page
    To be successful here you should read all of the following.
    ForumRules
    ForumFAQ
    If you are new to Back|Track
    Back|Track Wiki
    Failure to do so will probably get your threads deleted or worse.

Similar Threads

  1. New to Penetration Testing
    By darksoul in forum Beginners Forum
    Replies: 7
    Last Post: 06-24-2010, 03:57 PM
  2. Firewall penetration testing
    By tlingitsoldier in forum Beginners Forum
    Replies: 26
    Last Post: 04-28-2010, 11:51 PM
  3. Penetration Testing Environment.
    By chasebadkids in forum OLD Pentesting
    Replies: 8
    Last Post: 01-31-2010, 03:46 AM
  4. Penetration testing
    By jjxoni in forum OLD Newbie Area
    Replies: 6
    Last Post: 01-31-2009, 04:42 PM
  5. Timed out in penetration testing
    By mindf in forum OLD Newbie Area
    Replies: 5
    Last Post: 08-13-2008, 11:11 AM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •