28/11/2012

[PAPER] Penetration Testing with BackTrack


INTRODUCCIÓN

MÉTODOS DE ANÁLISIS DE APLICACIONES WEB

Network Mapping
Information Gathering
CMS Identification
IDS/IPS Detection
Open Source Analysis
Web Crawlers
Vulnerability Assessment and Exploitation
Maintaining Access

NETWORK MAPPING

Nmap
Netifera

INFORMATION GATHERING

TheHarvester
Maltego

CMS IDENTIFICATION

BlindElephant
CMS-Explorer
WhatWeb

IDS/IPS DETECTION

Waffit

OPEN SOURCE ANALYSIS

GHDB (Google Hacking DataBase)
Xssed

WEB CRAWLERS

WebShag
DirBuster

VULNERABILITY ASSESSMENT AND EXPLOITATION

JoomScan
SqlMap
Fimap
Shodan
W3af
Uniscan
Nikto

MAINTAINING ACCESS

Weevely
WeBaCoo
MsfPayload

CONCLUSIÓN

DOWNLOAD

VER ONLINE