Professional Penetration Testing

Index

Active information gathering

DNS interrogation

additional commands within nslookup,

240

BIND version number,

238–239

e-mail accounts

finger vs. Hackerdemia LiveCD,

241–242

Hackerdemia LiveCD,

240–242

network surveying

Netdiscover results on lab network,

247

Nmap scan on lab network,

246

perimeter network identification

Cisco switch,

245

Google network elements,

242,, 245

ôwhoisö information,

242–245

Traceroute systems,

243–244

Active OS fingerprinting,

272

Address resolution protocol (ARP),

274–275

After-action review

project assessments,

470–471

team assessments,

471

training proposals,

471–473

American Society for Industrial Security (ASIS),

Application logs

unsuccessful login attempts,

396

/var/log/message log file,

397

Application security, ...

Get Professional Penetration Testing now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Professional Penetration Testing by Thomas Wilhelm

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly