Penetration Testing: Planning, Scoping, and Recon

Overview

This course will teach you what specific parts are required within the pre-engagement documentation and how to perform the initial investigation of the target while only using open-source intelligence and passive reconnaissance methods. Before you can start your penetration tests there are a lot of things that come to mind.

What documents are needed, what should be in them, what is information gathering, and how/where should you start? In this course, Penetration Testing:

Planning, Scoping, and Recon, you’ll learn to perform passive reconnaissance through OSINT and passive methods, and learn what is required in document pre-engagement for you, as a pentester, and your customer to finalize.

First, you’ll explore the most important information in the pre-engagement documents like SoW, NDA, and Rules of Engagement. Next, you’ll discover how to leverage OSINT tools and frameworks to gather information about your target.

Finally, you’ll learn how to leverage passive scanning tools to gather the information which will aid you in finding targets that could lead you to initial compromise. When you’re finished with this course, you’ll have the skills and knowledge needed to create documents with all the required elements to start an engagement, as well as a good foundation on how to gather information through OSINT and passive reconnaissance tools allowing you to gather valuable data about the target company.

Taught by

Jurriën

Subjects