Please enable JavaScript.
Coggle requires JavaScript to display documents.
Pentest - Coggle Diagram
Pentest
Network Scanning
Nessus, Nexpose, and NMAP.
-
-
Reconnaissance
NMAP, Hping, Maltego, and Google Dorks.
Nmap
-
Scan Techniques
IP -sS TCP SYN port scan (Default)
IP -sT TCP connect port scan (Default without root privilege)
IP -sU UDP port scan
IP -sA TCP ACK port scan
IP -sW TCP Window port scan
IP -sM TCP Maimon port scan
-
-
-
-
-
-
Enumeration
File Upload
File upload is becoming a more and more essential part of any application, where the user is able to upload their photo, their CV, or a video showcasing a project they are working on. The application should be able to fend off bogus and malicious files in a way to keep the application and the users safe.
Malicious Files
Client-side active content (XSS, CSRF, etc.) that could endanger other users if the files are publicly retrievable.
-
Send ZIP bombs, XML bombs (otherwise known as billion laughs attack), or simply huge files in a way to fill the server storage which hinders and damages the server's availability
-
-
-
-
-
-
-