Penetration Testing Linux

 

Cybersecurity Demo

Penetration Testing Linux

In this online, instructor led training course students will get a hands-on feel for penetration testing. The instructor goes through many of the tools available through demonstrations allowing you to scan multiple port numbers and protocols. This course will be useful for any students who are wanting to do penetration testing in the real world.

Instructor:

Alex Achs

Course Information

Skills Learned

  • Introduction to TCP and UDP scanning
  • FTP scanning of Linux OS
  • SSH scanning of Linux OS
  • Real world application of penetration testing tools
  • Scan protocols such as LDAP, SMB, and SNMP

Who Should Attend This Course

Network Admins, Security team members, risk managers, and IT directors

Prerequisites

None, but we recommend that students have a working knowledge of logical and physical network architectures, networking components, and TCP/IP.

Course Outline

Discovering hosts via Ping Scan

  • nmap -sn 10.0.0.0/8
  • What difference TTL means

TCP Scanning:

  • nmap -v -p- -sT
  • unicornscan -i -I -mT $IP:a

UDP Scanning:

  • Nmap -v -p- -sU
  • unicornscan -i -I -mU $IP:a

Searchsploit (Searches exploitdb)
Some common ports and what to do:
21 – FTP

  • Fingerprint version
  • Check for Anonymous access
  • Brute Forcing
  • MITM (Requires more setup)

SSH

  • Fingerprint version
  • Brute Force

Telnet

  • Fingerprint version
  • Brute Force

SMTP

  • Fingerprint version
  • Enumerate Users

DNS

  • Fingerprint version
  • Zone transfer
  • DNSRecon
  • DNSEnum

FINGER

  • User enumeration
  • Potential command execution

WEB

  • Fingerprint version
  • robots.txt
  • Nikto
  • Dirbuster \ Gobuster
  • Local \ Remote File Inclusion (LFI & RFI)

SNMP

  • Default Community Strings
  • MIBS
    • .1.3.6.1.2.1.1.5 Hostnames
    • .1.3.6.1.4.1.77.1.4.2 Domain Name
    • .1.3.6.1.4.1.77.1.2.25 Usernames
    • .1.3.6.1.4.1.77.1.2.3.1.1 Running Services
    • .1.3.6.1.4.1.77.1.2.27 Share Information
  • snmpwalk
  • SNMP Bruteforce

LDAP

  • Enumeration

SMB

  • enum4linux
  • smbclient
  • Mounting Shares

CLASS START DATES



Are you a student and need support?

Don’t see the class you’re looking for?

Get a demo or pricing!

Call (800) 850-9932 or submit this form to get pricing for you or your team.

We absolutely love being able to tailor the StormWind training experience to you and your goals. Simply provide us with a little bit of upfront info and we’ll get to work on customizing learning packages for you—at a price you just can’t resist.