Penetration Testing (2020)

From CyberEdWiki
Jump to: navigation, search

The intent of the Penetration Testing Knowledge Unit is to provide students with methods of discovering ways of exploiting vulnerabilities to gain access to a system.


  1. Students should be able to plan, organize and perform penetration testing on a simple network.


  1. Flaw Hypothesis Methodology
  2. Other methodologies (e.g., OSSTMM)
  3. Identifying flaws from documentation
  4. Identifying flaws from source code analysis
  5. Vulnerability Scanning
  6. Understanding families of attacks
  7. Understanding flaws that lead to vulnerabilities
  8. Enumeration, foot printing
  9. Attack Surface Discovery
  10. Attack Vectors


NICE Framework Categories[edit]

CSEC 2017 Categories[edit]

Specialization Areas[edit]

See also[edit]

Related Knowledge Units

Further reading[edit]

Suggested textbooks[edit]

Suggested academic readings[edit]

Sample knowledge test[edit]

Sample skills test[edit]

Sample abilities test[edit]

Additional notes or materials[edit]


Reference ID[edit]