340 likes | 828 Views
Penetration testing. Agenda. Penetration testing ? Certificated Penetration testing for? Methodology System & Network Web Mobile Tools Commercial Free Tools Report Ex. Q&A. Penetration testing. Vulnerability Assessment. Penetration Testing. Penetration testing TYPE.
E N D
Agenda • Penetration testing • ? • Certificated • Penetration testing for? • Methodology • System & Network • Web • Mobile • Tools • Commercial • Free Tools • Report • Ex. • Q&A
Penetration testingTYPE • Internal • External • Black box • White box • Grey box Reference : http://www.giac.org/cissp-papers/197.pdf
Penetration testing : Certificated • Certified Penetration Testing Engineer (CPTE)
Penetration testing : Certificated • The Offensive Security Certified Professional (OSCP)
Penetration testing : Certificated • CEH: Certified Ethical Hacking
Penetration testing : Certificated BIG NAME • Certified Penetration Testing Consultant (CPTC) • GIAC Web Application Penetration Tester (GWAPT) • GIAC Penetration Tester (GPEN) • Certified Information Systems Security Professional (CISSP) • Certified Information Security Manager (CISM) • Certified Information Systems Auditor - CISA
Penetration testing : Methodology • ขั้นตอน หรือวิธีการ เพื่อ?
Penetration testing : Methodology • Information Gathering • Information Analysis and Planning • Vulnerability Detection • Penetration • Attack/Privilege Escalation • Analysis and reporting • Clean-up Information Analysis and Planning Analysis and Reporting Attack/ Privilege Escalation Information Gathering Vulnerability Detection Penetration Clean Up
Penetration testing : MethodologyWeb Application • OWASP 2013 • A1-Injection • A2-Broken Authentication and Session Management • A3-Cross-Site Scripting (XSS) • A4-Insecure Direct Object References • A5-Security Misconfiguration • A6-Sensitive Data Exposure • A7-Missing Function Level Access Control • A8-Cross-Site Request Forgery (CSRF) • A9-Using Components with Known Vulnerabilities • A10-Unvalidated Redirects and Forwards
Penetration Testing: TOOLS - Commercial • Nessus Vulnerability Scanner - Tenable Network Security • Rapid 7 Nexpose + Metasploit Professional • CORE Impact Pro • Immunity CANVAS Professional • IBM APPSCAN • ACUNETIX • HP WebInspect • HavijAdvanced SQL Injection • ETC
Penetration Testing: TOOLS - FREE • Tenable Nessus Home • Rapid 7 Nexpose Community • NMAP • Blackbuntu Linux • Firefox Addon • Metasploit • Kali Linux • ETC
Report • Executive • Technical
Benefit of Penetration testing • Manage Risk Properly • Increase Business Continuity • Minimize Client-side Attacks • Protect Clients, Partners And Third Parties • Comply With Regulation or Security Certification • Evaluate Security Investment • Protect Public Relationships And Brand Issues