Chapter 7Exploiting Network Vulnerabilities

THE PENTEST+ EXAM TOPICS COVERED IN THIS CHAPTER INCLUDE:

Domain 3: Attacks and Exploits

  • images 3.3 Given a scenario, exploit network-based vulnerabilities.
    • Name resolution exploits
      • NETBIOS name services
      • LLMNR
    • SMB exploits
    • SNMP exploits
    • SMTP exploits
    • FTP exploits
    • DNS cache poisoning
    • Pass the hash
    • Man-in-the-middle
      • ARP spoofing
      • Replay
      • Relay
      • SSL stripping
      • Downgrade
    • DoS/Stress test
    • NAC bypass
    • VLAN hopping
  • images 3.4 Given a scenario, exploit wireless and RF-based vulnerabilities.
    • Evil twin
      • Karma attacks ...

Get CompTIA PenTest+ Study Guide now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.