Nmap
Nmap is an open-source network scanner used to discover hosts, ports, and services. PenTest+ covers Nmap and interpreting its output during reconnaissance and enumeration.
Nmap is an open-source network scanner used to discover hosts, ports, and services. PenTest+ covers Nmap and interpreting its output during reconnaissance and enumeration.
Rules of engagement (RoE) are the agreed constraints of a penetration test — scope, timing, targets, and permitted techniques.
Scope defines exactly which systems, networks, and applications are authorized targets of a penetration test.
A statement of work (SOW) is the document that defines the deliverables, timeline, and terms of a penetration testing engagement.
OSINT (Open-Source Intelligence) is information gathered from publicly available sources during reconnaissance.
Reconnaissance is the phase of gathering information about a target using passive and active techniques.
Enumeration is the active process of extracting details such as hosts, services, users, and shares from a target.
Nmap is an open-source network scanner used to discover hosts, ports, and services.
Vulnerability scanning is the use of automated tools to identify security weaknesses in targets.
Metasploit is a widely used exploitation framework for developing and executing exploit code against targets.
SQL injection is a web attack that inserts malicious SQL into a query to read or modify a database.
Social engineering is the manipulation of people into revealing information or performing actions that aid an attack.
Privilege escalation is the act of gaining higher permissions than initially granted on a compromised system.
Lateral movement is the technique of moving from one compromised system to others within a network.
Persistence is the establishment of continued access to a compromised system that survives reboots or credential changes.