Penetration Testing (2020)
From CyberEdWiki
The intent of the Penetration Testing Knowledge Unit is to provide students with methods of discovering ways of exploiting vulnerabilities to gain access to a system.
Contents
Outcomes[edit]
- Students should be able to plan, organize and perform penetration testing on a simple network.
Topics[edit]
- Flaw Hypothesis Methodology
- Other methodologies (e.g., OSSTMM)
- Identifying flaws from documentation
- Identifying flaws from source code analysis
- Vulnerability Scanning
- Understanding families of attacks
- Understanding flaws that lead to vulnerabilities
- Enumeration, foot printing
- Attack Surface Discovery
- Attack Vectors
Skills[edit]
NICE Framework Categories[edit]
CSEC 2017 Categories[edit]
Specialization Areas[edit]
See also[edit]
Related Knowledge Units
Further reading[edit]
Suggested textbooks[edit]
Suggested academic readings[edit]
Sample knowledge test[edit]
Sample skills test[edit]
Sample abilities test[edit]
Additional notes or materials[edit]
Contacts[edit]
Reference ID[edit]
PTT