SlideShare a Scribd company logo

Penetration Testing

Download as PPTX, PDF
Mayank Singh, profile picture
Mayank Singh

Penetration testing involves legal attempts by third parties to gain access to computer systems or networks in order to identify security vulnerabilities. There are two main types: black box testing, where no prior network knowledge is provided, and white box testing, where full information is given. Various tools can be used in penetration testing including exploitation frameworks, social engineering tools, and SQL injection detection utilities.

1 of 9
Downloaded 19 times
1
2
3
4
5
6
7
8
9
PENETRATION TESTING From: Sumtrix (A Cyber Security Consultancy) By: Mayank Singh
About PENETRATION TESTING ▪ A Penetration Testing, also known as a Pen Test is a legal attempt at gaining access to your protected computer systems or networks, often conducted by a third party organization. The purpose of the test is to identify security vulnerabilities and then attempt to successfully exploit them in order to gain some form of access to the network or computer system. ▪ Two of the more common types of penetration tests are black box and white box penetration testing. In a black box test, no prior knowledge of the corporate system is given to the third party tester. This is often the most preferred test as it is an accurate simulation of how an outsider/hacker would see the network and attempt to break into it. A white box test on the other hand is when the third party organisation is given full IP information, network diagrams and source code files to the software, networks and systems, in a bid to find weaknesses from any of the available information. WWW.SUMTRIX.COM Email:info@sumtrix.com November 2014 Mayank SIngh
PENETRATION TESTING- SOFTWARE'S / TOOLS / UTILITIES ▪ Exploitation ▪ Framework ▪ Social Engineering Attack Tools ▪ SQL Injection Detection Tools WWW.SUMTRIX.COM Email:info@sumtrix.com November 2014 Mayank SIngh
EXPLOITATION TOOL WWW.SUMTRIX.COM Email:info@sumtrix.com November 2014 Mayank SIngh
EXPLOITATION TOOL Continue… WWW.SUMTRIX.COM Email:info@sumtrix.com November 2014 Mayank SIngh
FRAMEWORK ▪ Metasploit ▪ Mercury ▪ OpenSCAP ▪ rsif ▪ Phemail.py ▪ Xenotix XSS Exploit Framework WWW.SUMTRIX.COM Email:info@sumtrix.com November 2014 Mayank SIngh
SOCIAL ENGINEERING ATTACK TOOLS • Social-Engineering Toolkit (SET) WWW.SUMTRIX.COM Email:info@sumtrix.com November 2014 Mayank SIngh
SQL INJECTION DETECTION TOOLS ▪ CAT.NET ▪ Dotdefender ▪ Microsoft Url Scan ▪ GreenSql ▪ HP Scrawlr ▪ Sqlstripes WWW.SUMTRIX.COM Email:info@sumtrix.com November 2014 Mayank SIngh
ThankYou Be Secure Always For more Updates: www.sumtrix.com www.facebook.com/sumtrix14 Email:info@sumtrix.com Sumtrix A Cyber Security Consultancy WWW.SUMTRIX.COM Email:info@sumtrix.com November 2014 Mayank SIngh

More Related Content

PPTX
Social engineering presentation
pooja_doshi
 
PDF
What is Ethical Hacking? | Ethical Hacking for Beginners | Ethical Hacking Co...
Edureka!
 
PDF
Footprinting
Duah John
 
PDF
What is Penetration & Penetration test ?
Bhavin Shah
 
PPTX
Digital security
kamcuff
 
PPTX
Rotor machine,subsitution technique
kirupasuchi1996
 
PDF
Incident Response
MichaelRodriguesdosS1
 
PPTX
Introduction To Vulnerability Assessment & Penetration Testing
Raghav Bisht
 
Social engineering presentation
pooja_doshi
 
What is Ethical Hacking? | Ethical Hacking for Beginners | Ethical Hacking Co...
Edureka!
 
Footprinting
Duah John
 
What is Penetration & Penetration test ?
Bhavin Shah
 
Digital security
kamcuff
 
Rotor machine,subsitution technique
kirupasuchi1996
 
Incident Response
MichaelRodriguesdosS1
 
Introduction To Vulnerability Assessment & Penetration Testing
Raghav Bisht
 

What's hot (20)

PPTX
Advanced persistent threat (apt)
mmubashirkhan
 
PPTX
Cyber security
Tanu Basoiya
 
PPTX
Network Penetration Testing
Mohammed Adam
 
PPTX
When Cyber Security Meets Machine Learning
Lior Rokach
 
PPTX
Physical security
Tariq Mahmood
 
PPTX
case study on cyber crime
Paras Kansagara
 
PDF
Hacking ético [Pentest]
Eduardo Arriols Nuñez
 
PDF
Vulnerability Management
asherad
 
PDF
Social Engineering Basics
Luke Rusten
 
PPTX
Vulnerability assessment and penetration testing
Abu Sadat Mohammed Yasin
 
PDF
Initial Response and Forensic Duplication
Jyothishmathi Institute of Technology and Science Karimnagar
 
PDF
Tipos de Ataques Informaticos
sm2099
 
PDF
Social engineering attacks
Ramiro Cid
 
PPTX
Cyber Terrorism
Deepak Pareek
 
PDF
The Rise of the Purple Team
Priyanka Aash
 
PPTX
Social engineering-Attack of the Human Behavior
James Krusic
 
PPTX
Cyber security
TaimoorArshad5
 
PPTX
Red Team vs. Blue Team
EC-Council
 
PPT
AN INTRUSION DETECTION SYSTEM
Apoorv Pandey
 
PDF
Securing Industrial Control System
Hemanth M
 
Advanced persistent threat (apt)
mmubashirkhan
 
Cyber security
Tanu Basoiya
 
Network Penetration Testing
Mohammed Adam
 
When Cyber Security Meets Machine Learning
Lior Rokach
 
Physical security
Tariq Mahmood
 
case study on cyber crime
Paras Kansagara
 
Hacking ético [Pentest]
Eduardo Arriols Nuñez
 
Vulnerability Management
asherad
 
Social Engineering Basics
Luke Rusten
 
Vulnerability assessment and penetration testing
Abu Sadat Mohammed Yasin
 
Initial Response and Forensic Duplication
Jyothishmathi Institute of Technology and Science Karimnagar
 
Tipos de Ataques Informaticos
sm2099
 
Social engineering attacks
Ramiro Cid
 
Cyber Terrorism
Deepak Pareek
 
The Rise of the Purple Team
Priyanka Aash
 
Social engineering-Attack of the Human Behavior
James Krusic
 
Cyber security
TaimoorArshad5
 
Red Team vs. Blue Team
EC-Council
 
AN INTRUSION DETECTION SYSTEM
Apoorv Pandey
 
Securing Industrial Control System
Hemanth M
 
Ad

Viewers also liked (20)

PPTX
Penetration And its Tool
Mayank Singh
 
PPT
Microsoft Powerpoint Presentation- Charity Hope Ponce C Fund 1-H
Charity Hope Ponce
 
PPTX
Atl 12 fi̇zi̇hi̇n dogasi bi̇lal şahi̇n
Bilal Sahin
 
PPTX
Creating your-first-product-in-click bank
Rio Sardoma
 
PPTX
continental theory and plate tectonic
Charity Hope Ponce
 
PPT
Microsoft Powerpoint Presentation- Charity Hope Ponce Cfund 1-H
Charity Hope Ponce
 
PPTX
Making Strong Security Easier
Fen Labalme
 
PDF
Peace - Niño Josele (Guitar Cover)
Alfonso Rubio Rodríguez
 
PPTX
Bolestifull
Georgi Tanchev
 
PPT
Exim process pp1
chinu524
 
DOC
Hsg anh. vong 1.2012 2013
Vân Anh Nguyễn Thị
 
PDF
Livio Gianola Ejercicio n° 1, 2, 3 - arr.: Alfonso Rubio Rodríguez
Alfonso Rubio Rodríguez
 
PDF
Operating Docker
Jen Andre
 
PDF
Ida e Volta (Cover Alfonso Rubio Rodríguez)
Alfonso Rubio Rodríguez
 
PPT
OSSIM and OMAR in the DoD/IC
Joshua L. Davis
 
PPTX
Whats New in OSSIM v2.2?
AlienVault
 
PPTX
OSSIM Overview
n|u - The Open Security Community
 
PPTX
Integrated Tools in OSSIM
AlienVault
 
PPTX
Solving the Open Source Security Puzzle
Vic Hargrave
 
PDF
Linux Hardening
Michael Boelen
 
Penetration And its Tool
Mayank Singh
 
Microsoft Powerpoint Presentation- Charity Hope Ponce C Fund 1-H
Charity Hope Ponce
 
Atl 12 fi̇zi̇hi̇n dogasi bi̇lal şahi̇n
Bilal Sahin
 
Creating your-first-product-in-click bank
Rio Sardoma
 
continental theory and plate tectonic
Charity Hope Ponce
 
Microsoft Powerpoint Presentation- Charity Hope Ponce Cfund 1-H
Charity Hope Ponce
 
Making Strong Security Easier
Fen Labalme
 
Peace - Niño Josele (Guitar Cover)
Alfonso Rubio Rodríguez
 
Bolestifull
Georgi Tanchev
 
Exim process pp1
chinu524
 
Hsg anh. vong 1.2012 2013
Vân Anh Nguyễn Thị
 
Livio Gianola Ejercicio n° 1, 2, 3 - arr.: Alfonso Rubio Rodríguez
Alfonso Rubio Rodríguez
 
Operating Docker
Jen Andre
 
Ida e Volta (Cover Alfonso Rubio Rodríguez)
Alfonso Rubio Rodríguez
 
OSSIM and OMAR in the DoD/IC
Joshua L. Davis
 
Whats New in OSSIM v2.2?
AlienVault
 
OSSIM Overview
n|u - The Open Security Community
 
Integrated Tools in OSSIM
AlienVault
 
Solving the Open Source Security Puzzle
Vic Hargrave
 
Linux Hardening
Michael Boelen
 
Ad

Similar to Penetration Testing (20)

PPTX
Hacking and Penetration Testing - a beginners guide
Pankaj Dubey
 
PPTX
Ethical hacking and cyber security intro
Abhilash Ak
 
PPT
Ethical Hacking
Mukul Agarwal
 
PPTX
How to hack or what is ethical hacking
baabtra.com - No. 1 supplier of quality freshers
 
PPTX
Introduction ethical hacking
Vishal Kumar
 
PPT
Footprintig (Haching)
Asif Iqbal
 
PPT
Footprintig(Haching)
Asif Iqbal
 
PPTX
INTERNSHIPREVIEW-ISHAQ (1) [Recovered].pptx
SuhailShaik16
 
PDF
What is ethical hacking and complete cyber security presentation on this file
AyushSrivastava673855
 
PDF
Network Penetration Testing Service
Sense Learner Technologies Pvt Ltd
 
PDF
Ethical Hacking Interview Questions and Answers.pdf
ShivamSharma909
 
PPTX
Ethical Hacking
Bharat Sabne
 
PPTX
Ethical Hacking justvamshi .pptx
vamshimatangi
 
PDF
Practical White Hat Hacker Training - Introduction to Cyber Security
PRISMA CSI
 
PPTX
Malware Analysis
Ramin Farajpour Cami
 
PPTX
Ehtical hacking
Uday Verma
 
PPTX
Web hacking 1.0
Q Fadlan
 
PPTX
Password Stealing & Enhancing User Authentication Using Opass Protocol
Prasad Pawar
 
DOCX
Hacking
gvsai501
 
DOCX
Hacking
gvsai501
 
Hacking and Penetration Testing - a beginners guide
Pankaj Dubey
 
Ethical hacking and cyber security intro
Abhilash Ak
 
Ethical Hacking
Mukul Agarwal
 
How to hack or what is ethical hacking
baabtra.com - No. 1 supplier of quality freshers
 
Introduction ethical hacking
Vishal Kumar
 
Footprintig (Haching)
Asif Iqbal
 
Footprintig(Haching)
Asif Iqbal
 
INTERNSHIPREVIEW-ISHAQ (1) [Recovered].pptx
SuhailShaik16
 
What is ethical hacking and complete cyber security presentation on this file
AyushSrivastava673855
 
Network Penetration Testing Service
Sense Learner Technologies Pvt Ltd
 
Ethical Hacking Interview Questions and Answers.pdf
ShivamSharma909
 
Ethical Hacking
Bharat Sabne
 
Ethical Hacking justvamshi .pptx
vamshimatangi
 
Practical White Hat Hacker Training - Introduction to Cyber Security
PRISMA CSI
 
Malware Analysis
Ramin Farajpour Cami
 
Ehtical hacking
Uday Verma
 
Web hacking 1.0
Q Fadlan
 
Password Stealing & Enhancing User Authentication Using Opass Protocol
Prasad Pawar
 
Hacking
gvsai501
 
Hacking
gvsai501
 

Penetration Testing

  • 1. PENETRATION TESTING From: Sumtrix (A Cyber Security Consultancy) By: Mayank Singh
  • 2. About PENETRATION TESTING ▪ A Penetration Testing, also known as a Pen Test is a legal attempt at gaining access to your protected computer systems or networks, often conducted by a third party organization. The purpose of the test is to identify security vulnerabilities and then attempt to successfully exploit them in order to gain some form of access to the network or computer system. ▪ Two of the more common types of penetration tests are black box and white box penetration testing. In a black box test, no prior knowledge of the corporate system is given to the third party tester. This is often the most preferred test as it is an accurate simulation of how an outsider/hacker would see the network and attempt to break into it. A white box test on the other hand is when the third party organisation is given full IP information, network diagrams and source code files to the software, networks and systems, in a bid to find weaknesses from any of the available information. WWW.SUMTRIX.COM Email:info@sumtrix.com November 2014 Mayank SIngh
  • 3. PENETRATION TESTING- SOFTWARE'S / TOOLS / UTILITIES ▪ Exploitation ▪ Framework ▪ Social Engineering Attack Tools ▪ SQL Injection Detection Tools WWW.SUMTRIX.COM Email:info@sumtrix.com November 2014 Mayank SIngh
  • 4. EXPLOITATION TOOL WWW.SUMTRIX.COM Email:info@sumtrix.com November 2014 Mayank SIngh
  • 5. EXPLOITATION TOOL Continue… WWW.SUMTRIX.COM Email:info@sumtrix.com November 2014 Mayank SIngh
  • 6. FRAMEWORK ▪ Metasploit ▪ Mercury ▪ OpenSCAP ▪ rsif ▪ Phemail.py ▪ Xenotix XSS Exploit Framework WWW.SUMTRIX.COM Email:info@sumtrix.com November 2014 Mayank SIngh
  • 7. SOCIAL ENGINEERING ATTACK TOOLS • Social-Engineering Toolkit (SET) WWW.SUMTRIX.COM Email:info@sumtrix.com November 2014 Mayank SIngh
  • 8. SQL INJECTION DETECTION TOOLS ▪ CAT.NET ▪ Dotdefender ▪ Microsoft Url Scan ▪ GreenSql ▪ HP Scrawlr ▪ Sqlstripes WWW.SUMTRIX.COM Email:info@sumtrix.com November 2014 Mayank SIngh
  • 9. ThankYou Be Secure Always For more Updates: www.sumtrix.com www.facebook.com/sumtrix14 Email:info@sumtrix.com Sumtrix A Cyber Security Consultancy WWW.SUMTRIX.COM Email:info@sumtrix.com November 2014 Mayank SIngh