This Chapter helps you prepare for the EC-Council Certified Ethical Hacker (CEH) Exam by covering the following EC-Council objectives, which include understanding the business aspects of penetration testing. This includes items such as
Identify the components of the web infrastructure
Know the tools and techniques to scan web servers
Attacking web servers requires attackers to first scan and identify web servers. Techniques such as banner grabbing are used to identify web servers, and tools used include Telnet and Netcat.
Identify the three common IIS vulnerabilities