google

Google

You have been authorized to perform a penetration test against a website. You want to use Google dorks to footprint the site but only want results that show file extensions. What Google dork operator would you use?

You have been authorized to perform a penetration test against a website. You want to use Google dorks to footprint the site but only want results that show file extensions. What Google dork operator would you use? Option 1 : inurl Option 2 : site Option 3 : ext Option 4 : filetype 1. inurl Find pages with a certain word (or words) in the url. For this example, any results containing the word “apple” …

You have been authorized to perform a penetration test against a website. You want to use Google dorks to footprint the site but only want results that show file extensions. What Google dork operator would you use? Read More »

MSP

Alice, a professional hacker, targeted an organization’s cloud services. She infiltrated the target’s MSP provider by sending spear-phising emails and distributed custom-made malware to compromise user account and gain remote access to the cloud service. Further, she accessed the target customer profiles with her MSP accounr, compressed the customer data, and stored them in the MSP. Then, she used this information to launch further attack on the target organization. Which of the following cloud attacks did Alice perform in the above scenario?

Alice, a professional hacker, targeted an organization’s cloud services. She infiltrated the target’s MSP provider by sending spear-phising emails and distributed custom-made malware to compromise user account and gain remote access to the cloud service. Further, she accessed the target customer profiles with her MSP account, compressed the customer data, and stored them in the MSP. Then, she used this information to launch further attack on the target organization. Which of the following cloud attacks …

Alice, a professional hacker, targeted an organization’s cloud services. She infiltrated the target’s MSP provider by sending spear-phising emails and distributed custom-made malware to compromise user account and gain remote access to the cloud service. Further, she accessed the target customer profiles with her MSP accounr, compressed the customer data, and stored them in the MSP. Then, she used this information to launch further attack on the target organization. Which of the following cloud attacks did Alice perform in the above scenario? Read More »

Foot-printing-tools

Foot printing tools

Attackers are aided in foot printing with the help of various tools. Many organizations offer that make information gathering an easy task. This section describe stools intended for obtaining information from various sources. Foot printing tools are used to collect basic information about the target systems in order to Exploit them. Information collected by the foot printing tools contain target’s IP location information, routing information, business information, address, phone number and social security number, details …

Foot printing tools Read More »

Top-12-steps-for-Foot-printing-Penetration-Testing

Top 12 steps for Foot printing Penetration Testing

Top 12 steps for Foot printing Penetration Testing so far, we’ve got mentioned the mandatory techniques and tools that may be used to footprint Penetration a target organization’s network. Penetration testing (or pen testing) refers to the method of testing the organization’s security posture using similar techniques and tools as that of an attacker, however with the information and approval of the organization. Foot printing is that the first step to perform within the Penetration …

Top 12 steps for Foot printing Penetration Testing Read More »