Keyword - Pentest Training

Learn Penetration Testing Discover the world of penetration testing. Learn how to infiltrate networks and successfully penetrate systems and applications. …

Dear participants, Welcome to our online “Pentest Training” course. Before you start stretching your fingers and rolling up your sleeves, …

Specialists in IT security are in demand like never before. Threats from online attackers are increasing in particular. To protect …

Before our journey as penetration testers can begin, we need a goal in mind. After all, a long-distance runner doesn’t …

Several elements of an offence may be used for the prosecution of cybercrime in Austria. As it relates to penetration …

The legal situation in Germany is similar to Austrian case law. A law was passed in May 2007 against “arranging …

The legal framework yields the following insight: hacking is different from penetration testing. As we have already touched upon indirectly …

Hackers are unpredictable. Under normal circumstances, their identity or the number of attackers who are targeting a given company remain …

Now that we know how to classify a penetration test, the question remains how meaningful a simulation of such an …

It is normal for the quality of a product to differ from service provider to service provider. Naturally, this also …

Taking a look back, we learned about non-technical but essential aspects of penetration testing in the last chapters. In a …

In some cases, we need to identify the network ranges of a company ourselves for penetration testing. In the case …

To identify accessible servers in a network range, nmap can perform a ping sweep using the ICMP protocol. In this …

When performing a port scan against an IT infrastructure, we must assume that services can be accessed via any IP …

Now that we are able to identify open ports and accessible services on a target system, we can also communicate …

The domain name can provide important information about the job of a target system: As humans have a hard time …

In this day and age, networks can no longer be scanned only on IPv4 networks. Many companies are gradually migrating …

In review, scanning networks is the foundation of any attack, as this allows us to discover our attack surface. But …

Network services usually authenticate their users by means of a user name and associated password. If we know of the …

Unlike online password attacks, the hashes of the user passwords are available for offline password attacks. A cryptographic hash function …

User authentication by password is often implemented in web applications. Individual users may be assigned different roles. As a payment …

In 2021, vulnerabilities in authorization scheme were ranked as the top risk in web applications by the OWASP Top 10 …

According to the OWASP TOP 10, injections are among the three most common vulnerabilities in web applications. This also includes …

In addition to SQL injection, injection attacks also include cross-site scripting. Due to the lack of input validation, cross-site scripting …

We have successfully mastered our first step as an attacker: executing commands on our target system. But in most cases, …

The phase of collecting information is an important part in our process. We are especially looking for information concerning the …

So-called local root exploits often exist especially for older operating systems, which exploit vulnerabilities in the kernel when expanding privileges, …

After we have “built“ an exploit locally on our attacking machine, we still have to transfer it to the target …

We deliberately also kept an eye out for network information during privilege escalation, because IT infrastructure is often split into …

It goes without saying that many processes in a penetration test can and should be automated. We can write scripts, …

So far, we have looked at the technical processes of an attacker as individual pieces of the puzzle, which still …

Oblivius Education Inc. is a fictitious startup company that develops mobile applications for creating cheat sheets. The cheat sheet for …

To identify the accessible IT systems within the network range, a ping scan was performed with nmap, which found two …

In addition to targeted DNS queries, further vulnerabilities were searched for based on the name server’s version number. The software …

The previously SQL injection revealed not only the database version, but it was also possible to extract any database content. …

For an attacker, intruding into IT systems can be very thrilling. However, we should never lose sight of our real …

As is common with estimates, risk is assessed differently depending on the perception and experience of the pentester - even …

As a pentester, it would be a mistake to assume that all vulnerabilities will be fixed on the client's side. …

Looking back at the beginning of our journey as a penetration tester, let’s remember that our client asked us to …

The hacker group “Black Shadow“... Up until recently, the ’Black Shadow’ hacker group was known for credit card fraud, which …