Skip to content

z‐old Part 1 recap

Jump to bottom
Dean Bushmiller edited this page Jun 20, 2024 · 1 revision

Day 1 recap

Process
	http://www.pentest-standard.org/index.php/PTES_Technical_Guidelines
Documentation
	https://docs.google.com/spreadsheets/d/1PMK589QX5tC9KAMsuoTnR2uVhEVh8830xJNC0N0zdyM/
Victim/Target
	https://expsec.us/company-directory/
Victim business process
	Password resets
		https://discord.gg/MwGwpDDudP
Victim social media
	linkedin.com
Automation of victim search = Maltego
Artifacts for next step
	Userlist.txt
	Passwordlist.txt

Homework to prepare for day 2 - AWS lab running

	https://github.com/deanbushmiller/Vuln-Assessment-Analyst#lab-setup-homework

Objectives for day 2

	Collect services
	Research services for exploitable vulnerabilities
	Gain access login/pass with hydra
	Exploit services with metasploit

New class notes as we go are posted here.

Edits

Clone this wiki locally