Jump to content

Penetration Testing


Chris Gerling

Recommended Posts

Who all has actual experience doing penetration tests (legally)?

I've got a little.

Link to comment
Share on other sites

I only care about legal contractual stuff, not just randomly trying to pwn a network.

twas a joke my friend  :)

Link to comment
Share on other sites

  • 3 weeks later...

I get paid to manage firewalls and build VPNs and realize that i really should get some background in Pen Testing to be truly effective at my current job.  Any recommendations on getting started?  I've got the BackTrack beta 3 iso burned and ready.    :cool: 

Link to comment
Share on other sites

  • 4 weeks later...

I haven't got official experience, but will be taking GPEN 560 shortly. In preparation for that, I have installed metasploit, nessus, wireshark etc.... then I set up VMs and hacked away.

One stunt was to set up a debian web server and host a WP blog on it. then created a invisible malicious iframe and pointed it at a metasploit exploit. Then my victim VM surfed to the blog and got 0wned. :-P

it has been quite useful in helping me understand exploits. and penetrating systems. seems that the easiest way in is to get an employee to click on a link. Assuming that they secured their wifi and network....

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...