Penetration Testing: An Art of Information Gathering in an Ethical Way

Arjun, C V and Pooja, S (2017) Penetration Testing: An Art of Information Gathering in an Ethical Way. In: International Conference on Contemporary issues in Science, Engineering & Management, 18/02/2017, Bhubaneswar, Khurda, Odisha, India.

[img] PDF
958.pdf - Published Version
Restricted to Registered users only

Download (1MB) | Request a copy


Hackers execute cyber-attacks to cause damage and loss to the individual, organization and government. Attack can be insignificant or do mass destruction. In today’s world, business is connected through the internet. And that means it is vulnerable for attack. Minimizing the risk of cyber-attack means testing systems systematically for any sort of vulnerability before being made public. And that's the role of the penetration tester. All the security testing is done in a virtual environment. Using a virtual environment for testing ensures that all testing activities are contained within a prescribed set of environments, and test scans and probes don't leak out onto the internet. This is an important consideration in ethical penetration testing, or pen test. It's also prudent to ensure that testing activities don't accidentally become illegal activities. This paper focuses on information gathering methodology of the penetration testing. The experiment is performed using different tools like dnsenum, urlcrazy, load balancing detector(lbd), WAFW00F, arping, fping, Dmitry, maltego in Kali Linux platform wherein vulnerabilities are identified and the results are displayed.

Item Type: Conference or Workshop Item (Paper)
Uncontrolled Keywords: Ethical Hacking, Penetration Testing, Virtualization, Information Gathering, Reconnaissance, Kali Linux.
Subjects: Engineering > MIT Manipal > Information and Communication Technology
Depositing User: MIT Library
Date Deposited: 11 Dec 2017 10:08
Last Modified: 11 Dec 2017 10:08

Actions (login required)

View Item View Item