Pen Tests Flashcards

1
Q

Forceful Directory Browsing

A

Manually generate URLs designed to access files and folders on a separate host.
Format: IP/Directory
Example: 172.30.0.15/history
Example: 172.30.0.15/wwwroot

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

FTP with FileZilla

A
  • Host: IP address
  • Username: anonymous
  • Quick Connect
  • Select the file to transfer
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

SQL Injection

A

Enter 1’ OR 1=1;# into a textbox that reads data from a relational database.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

XSS Reflected

A

Enter < script >alert(‘This is an XSS exploit!’)</ script > (Remove spaces around script)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Command Execution

A

Enter IP address & netstat -n into a textbox

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

XSS Stored

A

Enter < script >document.write(“< H1 >You have been hacked!</ H1 >”)</ script > into a textbox. (Remove extra spaces)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Ping Flood

A

Enter IP address ping -f into the command terminal

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Log Files

A

Using forceful browsing, search for the logs file.
http://IP address/logs

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

FTP

A

Attempt to send files to a host using Filezilla.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

SMTP

A

Enter > netstat -an > Desktop\netstat_output.txt command into the command terminal. Search through the Notepad file created by the command for an entry associated with port number 25, 587, or 465. (These are the ports SMTP uses.)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Loose Lipped Errors

A

Browse to http://IP address/fnf.html and look at the error message provided. If it displays too much information, then it is loose-lipped.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly