Enumeration is the key to achieving success with a pen test. Learn about methods of enumerating networks and target systems, and how to leverage sophisticated tools and scripts.
Overview
Syllabus
Introduction
- Enumeration is the key to pen testing success
- What you should know
- Disclaimer
- Introduction to enumeration
- A refresher on Nmap
- All-port scanning with Masscan
- Digging for gold
- Angry scanning
- Passive scanning with Shodan
- Using Nmap scripts
- Scanning with Reconnoitre
- Scanning with Vanquish
- Enumerating with Sn1per
- Enumerating with SPARTA
- Diagnosing uncommon ports
- What's that web server?
- Refresher on enumerating web pages
- Fuzzing the website
- Enumerating Drupal sites
- Enumerating WordPress sites
- Enumerating Joomla sites
- Database enumeration with sqlmap
- Enumerating in the Linux shell
- Enumerating inside Windows
- What's next
Taught by
Malcolm Shore
