Project on Penetration testing

[jose]

Hello friends,

First of all, i Intro myself - My name is jose. Studying M.Sc(Cyber
forensic and Information security). I'm doing project on the title of
"Threat evasion Penetration testing". Could you all, can provide, your
view, regarding my project. Please suggest me too, How to be an expert
in penetration testing. I'm Using Bactrack 4 as my toolkit.

I expect everyone, will reply me.

[Joe Haldon]

Greetings Jose
It would be helpful to know more about you and your project. Threat
Evasion Penetration Testing -
Is that about Penetration testers evading threats? Evading Detection?
Evading counter attacks? Who is evading what? Feel free to post your
paper here and we'd be happy to review it. Although I doubt everyone
will reply, this is a pretty low key group. Backtrack 4 is a good
start. Once you feel comfortable with all the penetration tools on
their you should be in good shape.
Here is an excellent reference for both tools and techniques of
penetration testing:
http://www.vulnerabilityassessment.co.uk/Penetration%20Test.html
Good luck with your project.

[jose]

Hi joe,

I have only short time to complete ,my project. I have idea on, find
the weakness and exploiting it, taking control of the remote system,
and find out whether any hacking attempt happened there. But, i know
only finding and exploiting the weakness. But, i don't know, how to
find out other stuffs, needed. Could you, can give your view or
ideas , for my project.

[Dan LaVoie]

Hi Jose-

Congrats on taking the initiative to get your M.Sc? Is this for a
thesis? Your questions are pretty wide-spectrum, but I'm sure we'd
assist you with your questions. Could you be a little more specific,
though? Don't be afraid to also post in your own native language,
many of us speak multiple languages/dialects. I think I've narrowed
down your question to 3 possible questions. So you either:

1) Want more info on exploit research / Reverse engineering
2) Want to learn about threats, and how to avoid/mitigate their risks
or
3) Want to learn about Incident response / Forensic analysis

and our opinions on doing those things.

Warm regards,

-Dan

PS: I look forward to your response with a bag of apple crisps in my
hand.

[jose]

I have only two month to complete my project. I'm interested in find
vulnerabilities and exploiting it.

I have an idea, of find vulnerabilities in LAN based Windows operating
system, then perimeter devices like firewall, router and switch (With
vlan).

Finally exploit, it. Getting , route access.

Will you , give information about them

Warm regards,
Jose

[Dan LaVoie]

Ok. Seeing as you have such an aggressive schedule, I'm going to
defer you to the Metasploit Unleashed Free Training (http://
www.offensive-security.com/metasploit-unleashed/). There is a big
difference between Network Device attacks and application attacks.
This training will give you a starting point for OS attacks, with a
little emphasis on other app exploits. If you want to understand the
reason why I say they are very different, research the TCP/IP and OSI
Models. Hope it all works out for you. We'd love to hear about the
success of your project, and any reports or thesis materials you
create.

-Dan

[jose]

That, Was a great tutorial .

I have gone, before a week. It looks, so easy
Isn't it. Then, too , its a must need, tutorial.

How to hijack, the session id in lan??

[Dan LaVoie]

The tutorial is very easy, and very thorough. I don't think you
should be trying to steal session ID's before you learn more about how
networks work. That's a little too advanced for you based on the way
you described your skill set, and it leads me to believe your actions
are not truly honorable or for educational purposes. This group does
not support malicious activities. Ian, what are your thoughts on
this?

-Dan

[Ian Duffy]

Jose:

The purpose of this group is not to teach people how to hack or to perform specific attacks such as session hijacking. The primary purpose of this group is to allow people to share information about computer security, hacking, penetration testing, and similar endeavors. There are a wealth of resources on the Internet that will teach you the basics of performing many of the common activities related to hacking, penetration testing, etc - one of which was provided by Dan. If you are interested in learning how to hijack a session ID (there may be valid reasons for this - i.e. testing the security of a web application) then I would recommend reading some of the documentation at the Open Web Application Security Project (www.owasp.org) and/or purchasing some books on the topic of Web Application Hacking. Some that come to mind are:

Ajax Security
Web Application Hacker's Handbook
Hacking Exposed: Web Applications
Web Security Testing Cookbook

I would also recommend that you download WebGoat from OWASP and try some of the exercises that it includes; they are highly useful at explaining web application vulnerabilities and showing how to exploit them.

I appreciate your interest in the group but I don't think that you will find the answers that you are looking for here as this group is not set up to provide a forum by which people can learn how to hack. As Dan mentioned, we are a group of information security professionals who wish to share information, techniques or concepts that we find interesting but we do not support nor endorse malicious activities. Furthermore, most of us do not have time to teach people how to perform specific tasks. Group members are generally expected to know the basics or be willing to put forth the effort to learn as much as they can on their own - we just enjoy sharing the really interesting stuff with each other. As such, I will be deactivating your group membership at this time as I don't believe that you fit well within our group. I wish you the best of luck on your project and apologize for not being able to help you.

Best Wishes,

--Ian