book

CISO's Guide to Penetration Testing

Name: CISO's Guide to Penetration Testing
Author: James S. Tiller
ISBN: 9781466516854

by James S. Tiller

April 2016

Intermediate to advanced

389 pages

9h 41m

English

Auerbach Publications

Read now

Unlock full access

Cover
Half Title
Title Page
Copyright Page
Contents
Foreword
1 Getting Started
AudienceHow to Use This Book
2 Setting the Stage
Perspectives of ValueWhere Does Penetration Testing Fit?What Constitutes a Success?A Quick Look BackHacking ImpactsResourcesInformationTimeBrand and ReputationThe HackerTypes of HackersScript KiddiesIndependent HackersOrganized HackersSociologyMotives
3 The Framework
Planning the TestSound OperationsReconnaissanceEnumerationVulnerability AnalysisExploitationFinal AnalysisDeliverableIntegration
4 The Business Perspective
Business ObjectivesPrevious Test ResultsBuilding a RoadmapBusiness ChallengesSecurity DriversIncreasing Network ComplexityEnsuring Corporate ValueLower Management InvestmentBusiness ConsolidationMobile WorkforceGovernment Regulations and StandardsWhy Have the Test?Proof of IssueLimited Staffing and CapabilityThird-Party PerspectiveIt Is All about PerspectiveOverall ExpectationsHow Deep Is Deep Enough?One-Hole WonderToday’s Hole

5 Planning for a Controlled Attack
Inherent LimitationsTimeMoneyDeterminationLegal RestrictionsEthicsImposed LimitationsTiming Is EverythingAttack TypeSource PointRequired KnowledgeTiming of InformationInternetWeb AuthenticatedApplication ServiceDirect AccessMultiphased AttacksParallel SharedParallel IsolatedSeries SharedSeries IsolatedValue of Multiphase TestingEmploying Multiphased TestsTeaming and Attack StructureRed TeamVulnerability ExplanationTesting FocusMitigationWhite TeamPiggyback AttacksReverse ImpactDetectionBlue TeamIncident ResponseVulnerability ImpactCounterattackTeam CommunicationsEngagement PlannerThe Right Security ConsultantTechnologistsArchitectsEthicsThe TesterLogisticsAgreementsDowntime IssuesSystem and Data IntegrityGet Out of Jail Free CardIntermediatesPartnersCustomersService ProvidersLaw Enforcement
6 Preparing for a Hack
Technical PreparationAttacking SystemOperating SystemToolsData Management and ProtectionAttacking NetworkAttacking Network ArchitectureManaging the EngagementProject InitiationIdentify SponsorsBuilding the TeamsSchedule and MilestonesTrackingEscalationCustomer ApprovalDuring the ProjectStatus ReportsScope ManagementDeliverable ReviewConcluding the Engagement
7 Reconnaissance
Social EngineeringE-MailValueControlling DepthHelp Desk FraudValueControlling DepthProwling and SurfingInternal Relations and CollaborationCorporate Identity AssumptionPhysical SecurityObservationDumpster DivingTheftInternet ReconnaissanceGeneral InformationWeb SitesSocial Networking
8 Enumeration
Enumeration TechniquesConnection ScanningSYN ScanningFIN ScanningFragment ScanningTCP Reverse IDENT ScanningFTP Bounce ScanningUDP ScanningACK ScanningSoft ObjectiveLooking Around or Attack?Elements of EnumerationAccount DataArchitectureOperating SystemsWireless NetworksApplicationsCustom ApplicationsPreparing for the Next Phase
9 Vulnerability Analysis
Weighing the VulnerabilitySource PointsObtained DataThe InternetVendorsAlertsService PacksReporting Dilemma
10 Exploitation
Intuitive TestingEvasionThreads and GroupsThreadsGroupsOperating SystemsWindowsUNIXPassword CrackersRootkitsApplicationsWeb ApplicationsDistributed ApplicationsCustomer ApplicationsWardialingNetworkPerimeterNetwork NodesServices and Areas of ConcernServicesServices Started by DefaultWindows PortsNull ConnectionRemote Procedure Call (RPC)Simple Network Management Protocol (SNMP)Berkeley Internet Name Domain (BIND)Common Gateway Interface (CGI)Cleartext ServicesNetwork File System (NFS)Domain Name Service (DNS)File and Directory PermissionsFTP and TelnetInternet Control Message Protocol (ICMP)IMAP and POPNetwork Architecture
11 The Deliverable
Final AnalysisPotential AnalysisThe DocumentExecutive SummaryPresent FindingsPlanning and OperationsVulnerability RankingProcess MappingRecommendationsExceptions and LimitationsFinal AnalysisConclusionOverall StructureAligning FindingsTechnical MeasurementSeverityExposureBusiness MeasurementCostRiskPresentationRemedialTacticalStrategic
12 Integrating the Results
Integration SummaryMitigationTestPilotImplementValidateDefense PlanningArchitecture ReviewArchitecture Review StructureAwareness TrainingAwareness ProgramIncident ManagementBuilding a TeamPeopleMissionConstituencyOrganizational StructureDefining Services and QualityCERT FormsSecurity PolicyData ClassificationOrganizational SecurityConclusion
Index

Content preview from CISO's Guide to Penetration Testing

It could be argued that the difference between a penetration test and vulnerability scanning is the act of exploitation. A vulnerability scanning (or analysis) service is engineered to identify vulnerabilities and determine a level of risk based on the potential of the vulnerability without regard for other environmental conditions on the network that may enhance or cancel out the vulnerability altogether. Without pushing the limits of the vulnerability, the actual risk associated with the vulnerability will remain conjecture. By exploiting the vulnerability, a company can determine the impact of not rectifying the problem ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Hands-On Web Penetration Testing with Metasploit

Publisher Resources

ISBN: 9781439880289

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

CISO's Guide to Penetration Testing

by James S. Tiller

10Exploitation

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.