Learning Outcomes Being Assessed By This Portfolio;
· Research and critically evaluate security techniques used to perform vulnerability, and discovery tasks.
· Demonstrate critical knowledge of the tools, methods and procedures used in Penetration Testing
· Demonstrate systematic understanding and practical ability to conduct a penetration test.
· Communicate effectively the results of penetration testing.
Detailed Requirements & Marking Criteria This is an individual assessment. You are expected to produce a portfolio that contains two parts filed as a single document. Each part carries a different weighting. Part A is worth of 60% and it contains a practical element where you will be asked to conduct a penetration test on a target machine, in order to test for vulnerabilities that could lead to compromise of that asset. Part B will assess your ability of how provide solution to secure the target system on host level and network level, part B is worth of 40%.
Requirements:
1. A brief overview on the tools to be used during the test and how to use them.
– Provide a logical steps while conducting the pen-testing process (i.e. 1. gathering info, 2. probing, 3. vulnerability classification, etc…)
– Map the tools to be used with your pen-testing steps (i.e. in information gathering phase we have used tool 1, tool 2 and tool 3)
– If you wish, you can adapt a common pen-testing methodology, however you need to map the tools with each step as stated above. Otherwise, provide your own pen-testing methodology and justify it.
2. You are expected to perform a penetration test against a target system that will be provided to you.
3. The goal of the test is to gain enough information about the target system to enable remote access to the system, enumerate what information is available and then gain root access (if possible) in order to insert for example a backdoor to maintain access and/or delete logs to cover tracks.
4. You are expected to identify vulnerabilities and/or misconfiguration on the target host and exploit
them.
The post COCS71151 Department Of Computing Penetration Testing appeared first on My Assignment Online.