1.6penetration training concepts

Question 1

Active reconnaissance

Answer 1

Is the use of tools to send data to systems and then understanding their responses. Usually starts with various network and vulnerability scanners. Can be incredibly illegal and should not be engaged in without being prepared and proper authorixation

Question 2

Passive Reconnaissance

Answer 2

You are not touching any of the target’s equipment. Instead you are going through and gathering that which is already available. Forums and social media are great resources for gathering information about the company and its employees

Question 3

Pivot

Answer 3

In penetration testing it is using a compromised machine to attack other machines on the same network or system

Question 4

Persistence

Answer 4

Installing backdoors or methods to keep access to the host or other networks

Question 5

Escalation of Privilege

Answer 5

Allows for a user to get a higher-level access than what authentication allows for. Can be resolved through patching and updating. Typically related to a bug or vulnerability

Question 6

Black Box

Answer 6

You know nothing of the network, you have no prior knowledge

Question 7

White Box

Answer 7

You are given a full network map and you have full knowledge of the configurations allowing you to perform specific tests

Question 8

Grey box

Answer 8

Knowledge of the network, but not incredibly detailed

Question 9

Penetration testing vs vulnerability scanning

Answer 9

Penetration testing is an active attack on the network to exploit vulnerabilities, can assess potential damages, and the potential of exploits being found. Is done by a human. Vulnerability scan passively scans and identifies vulnerabilites, is automated