Penetration Testing: An Art of Information Gathering in an Ethical Way

Arjun, C V and Pooja, S (2018) Penetration Testing: An Art of Information Gathering in an Ethical Way. Journal of Advanced Research in Dynamical and Control Systems, 18. pp. 1241-1269. ISSN 1943023X

[img] PDF
3990.pdf - Published Version
Restricted to Registered users only

Download (1MB) | Request a copy

Abstract

Hackers execute cyber-attacks to cause damage and loss to the individual, organization and government. Attack can be insignificant or do mass destruction. In today’s world, business is connected through the internet. And that means it is vulnerable for attack. Minimizing the risk of cyber-attack means testing systems systematically for any sort of vulnerability before being made public. And that's the role of the penetration tester. All the security testing is done in a virtual environment. Using a virtual environment for testing ensures that all testing activities are contained within a prescribed set of environments, and test scans and probes don't leak out onto the internet. This is an important consideration in ethical penetration testing, or pen test. It's also prudent to ensure that testing activities don't accidentally become illegal activities. This paper focuses on information gathering methodology of the penetration testing. The experiment is performed using different tools like dnsenum, urlcrazy, load balancing detector(lbd), WAFW00F, arping, fping, Dmitry, maltego in Kali Linux platform wherein vulnerabilities are identified and the results are displayed

Item Type: Article
Uncontrolled Keywords: Ethical Hacking, Penetration Testing, Virtualization, Information Gathering, Reconnaissance, Kali Linux.
Subjects: Engineering > MIT Manipal > Information and Communication Technology
Depositing User: MIT Library
Date Deposited: 14 Feb 2018 09:20
Last Modified: 14 Feb 2018 09:20
URI: http://eprints.manipal.edu/id/eprint/150581

Actions (login required)

View Item View Item