Course Summary

Video Activity
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or
Sign up with Google
Sign up with Apple
Sign up with Microsoft
View all SSO options

Already have an account? Sign In »

Penetration Testing Execution Standard (PTES)
Course
Time
13 hours 9 minutes
Difficulty
Intermediate
CEU/CPE
13
Video Transcription
00:00
Hello and congratulations on reaching the penetration Testing execution standard Summary.
00:08
And again, you have put in a lot of hard work and a lot of dedication to going through the penetration testing execution standard, whether as a business owner, sock manager or a tester, so that you could better understand best practices surrounding penetration, testing and it's methodologies.
00:25
So what should we have picked up? Well, we went into pre engagement interactions where we went over a number of different areas to include introduction of scope all the way through to rules of engagement. We talked about intelligence gathering and background concepts and Level 12 and three intelligence target selection. Oh sent foot printing and identifying protection mechanisms.
00:46
We looked at threat modeling and a general process for doing so. We looked at asset analysis and process analysis within businesses, threat agent analysis, capability analysis, motivation, modeling and finding relevant news within touched on vulnerability analysis with testing, active testing, passive testing, validation and research
01:06
as the discussion topics,
01:07
we moved on into exploitation. The purpose countermeasures, evasion, precision strike, customized exploitation avenue, zero day angle example, am unease of attack and the overall objectives being reviewed. We then got into post exploitation, reiterating rules of engagement,
01:25
how we could go about data, exfiltration and some considerations, their persistence.
01:29
And then why important? Why it was important to clean up after ourselves and ensure that we don't leave a mess on our client network.
01:37
We wrapped it all up with reporting what makes up a sound executive summary as well as a sound technical report reminding everyone that this is not the end all be all in reporting. It's simply a recommendation. I encourage you to read various examples and find something that fence your need as well as the need of your clients.
01:56
So what? That I want to thank you for your time and joining me in the penetration Testing Execution Standard Review
02:02
until we meet again.
Instructed By
Robert Smith

Robert Smith

Director of Security Services at Corsica

Instructor
Similar Content
Exploitation and Mitigation: MSHTML Vulnerability (CVE-2021-40444)
Course
Exploitation and Mitigation: MSHTML Vulnerability (CVE-2021-40444)
5
The MSHTML Windows remote code execution vulnerability (CVE-2021-40444) identified in September 2021 could allow a ...
2CEUs
Kali Linux Fundamentals
Course
Kali Linux Fundamentals
4.12
If you’re interested in penetration testing and ethical hacking, then this Kali Linux course is ...
1CEUs
How to Use SET (BSWR)
Course
How to Use SET (BSWR)
2.75
The SET (or Social Engineering Toolkit) is a commonly known open source framework available on ...