Penetration Testing
Checklist
1. βοΈ Pre-engagement
Create a directory
βββ Penetration-Testing
β
βββ Pre-Engagement
β βββ ...
βββ Network-Pentesting
β βββ Linux
β β βββ Information-Gathering
β β β βββ ...
β β βββ Vulnerability-Assessment
β β β βββ ...
β β βββ ...
β β βββ ...
β βββ Windows
β β βββ Information-Gathering
β β β βββ ...
β β βββ ...
β βββ ...
βββ WebApp-Pentesting
β βββ ...
βββ Social-Engineering
β βββ ...
βββ .......
β βββ ...
βββ Reporting
β βββ ...
βββ Results
βββ ...
1. Open a `.qmd` document for taking notes with [Neovim](cheatsheets/nvim.qmd)
2. Start to record terminal activity with [script](cheatsheets/script.qmd) command
using the format `<date>-<start time>-<name>.log`
### [[ping]] target
> Low-overhead method of reaching the target to get a response.
## 2. π Network-Pentesting
### [[linux]]
### Information Gathering
#### Network Enumaration
1. Scan pour dΓ©terminer quels **ports** sont _ouverts_ avec [[nmap]]
### Windows
## 3. π WebApp-Pentesting
### Directory Tree
https://academy.hackthebox.com/module/87/section/880
```sh
/
βββ Penetration-Testing
β
βββ Pre-Engagement
β βββ ...
βββ Network-Pentesting
β βββ Linux
β β βββ Information-Gathering
β β βββ ...
β β βββ Vulnerability-Assessment
β β β βββ ...
β β βββ Exploitation
β β β βββ ...
β β βββ Post-Exploitation
β β β βββ ...
β β βββ ...
β βββ Windows
β β βββ Information-Gathering
β β β βββ ...
β β βββ ...
β βββ ...
βββ WebApp-Pentesting
β βββ ...
βββ Social-Engineering
β βββ ...
βββ .......
β βββ ...
βββ Reporting
β βββ ...
βββ Results
βββ ...https://academy.hackthebox.com/module/77/section/766
Projects/
βββ Acme Company
βββ EPT
β βββ evidence
β β βββ credentials
β β βββ data
β β βββ screenshots
β βββ logs
β βββ scans
β βββ scope
β βββ tools
βββ IPT
βββ evidence
β βββ credentials
β βββ data
β βββ screenshots
βββ logs
βββ scans
βββ scope
βββ tools