The Penetration Testing Execution Standard Logo

The Penetration Testing Execution Standard

0
Free
Visit Website

The penetration testing execution standard consists of seven main sections, covering everything related to a penetration test, from initial communication to reporting. The standard is divided into seven main sections: 1. Introduction and Planning 2. Intelligence Gathering and Threat Modeling 3. Vulnerability Research 4. Exploitation and Post-Exploitation 5. Reporting This version can be considered a v1.0, with a v2.0 in the works, providing more granular work in terms of 'levels' - as in intensity levels at which each of the elements of a penetration test can be performed at.

FEATURES

ALTERNATIVES

A collection of scripts for Turbo Intruder, a penetration testing tool

C3 is a framework for creating custom C2 channels, integrating with existing offensive toolkits.

A script to enumerate Google Storage buckets and determine access and privilege escalation

Insights on Red Teaming for Pacific Rim CCDC 2016 competition, focusing on preparation, operations plan, and automation.

CLI tool for offensive and defensive security assessments on the Joi validator library with a wide range of attacks.

Find RCE gadgets for CTF pwn challenges with ease.

Boofuzz is a network protocol fuzzing tool that aims to fuzz everything

Exploiting WordPress With Metasploit, containing 45 modules for exploits and auxiliaries.