Part 03 – Penetration Testing

FacebookTwitterGoogle+LinkedInEmail
Learning should be free.
  • Build your cyber security or IT career, for free.
  • Get free training, then land your next job.
  • Join the free learning revolution now!
Register
Description
In this module we take a deeper dive into penetration testing. We begin by pointing out that since vulnerability assessments and pen testing can be disruptive, certain precautions and administrative steps must be undertaken prior to testing. This requires alerting senior management and getting their sign off. In addition, it is vital that policies and procedures set forth by the organization be understood and followed and that well-defined goals for the testing be identified and tracked. We underscore the scope of the tester's responsibilities during testing. A tester's mandate is to determine if a system can withstand an attack. The tester tests and documents. Testers are not responsible for resolving any vulnerability issues they discover! This falls under the important security principle of the separation of duties. A successful pen tester must not only be knowledgeable about technology, but must also be creative. The tester must think like an attacker. This is a case where it's OK to break the rules! Crafty tactics such as social engineering and sniffing out the path of least resistance are key to being an effective pen tester. We offer a final word of advice to aspiring pen testers: don't overlook small weaknesses as these can often lead to big failures!  
Learn on the go.
The app designed for the modern cyber security professional.
Get it on Google Play Get it on the App Store
RELATED TO THIS COURSE
ISC2 CISSP Practice Test: Certified Information Systems Security Professional
Kaplan
Practice Test
Certified Information Systems Security Professional (CISSP)
Practice Labs
Certification Lab
Upcoming Industry Events
Jan
17
Escape the Endless Trials and Tribulations of Legacy SIEM
Webinar by Rapid7 @ 2 : 00 PM EST
Jan
22
Is Your Organization Ready for Automation?
Webinar by Rapid7 @ 2 : 00 PM EST
Jan
24
1st Annual Maryland InfraGard Cybersecurity Conference
by CyberSponse, Inc. @ 8 : 00 AM EST
Jan
24
Mastering Prevention: See More Attacks, Stop More Attacks
Webinar by Carbon Black, Inc. @ 2 : 00 PM EST
Jan
30
LIVE WEBINAR: Mid-Sized Organizations: How to Understand and Proactively Confront the Modern Threat Landscape
Webinar by Cynet @ 1 : 00 PM EST
Jan
31
Celebrate Change Your Password Day? Shining a new light on password management in the Cloud
Webinar by Thycotic @ 11 : 00 AM EST
Feb
13
Cyber Job Fair, San Antonio, TX
Job Fair by CyberSecJobs.com @ 2 : 00 PM EST
Feb
19
Securing Cloud-Native: 10 Tips for Better Container Security
Webinar by Signal Sciences @ 1 : 00 PM EST
View more events
Interested in promoting your company's event?

Our Revolution

We believe Cyber Security training should be free, for everyone, FOREVER. Everyone, everywhere, deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is a free community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

Cybrary On The Go

Get the Cybrary app for Android for online and offline viewing of our lessons.

Get it on Google Play
 

Support Cybrary

Donate Here to Get This Month's Donor Badge

 
Skip to toolbar

We recommend always using caution when following any link

Are you sure you want to continue?

Continue
Cancel