Penetration Testing
- Home
- Board: /g/ - Technology
- Reading: Penetration Testing
Newfag here, just found this awesome site - http://pentestit.ru
Right now, they're asking people to hack them, through some controlled test. As I said, newfag, I don't really understand what they're doing very well. I decided to tinker anyway.
Went onto my Linux (Ubuntu 14.04) partition, downloaded Virtualbox and downloaded the sites pre-configured Kali Linux majigger for Virtualbox. Used it, only got as far as scanning the ports of the correct ip, and finding all the ports were open.
What do? I have no idea how to attack a port. Did a bit of googling, and will continue to do so tomorrow, but if anyone has ideas and/or wants to try, please go ahead.
>.ru
Nice try, KGB
>>54847404
All ports open?
Use nmap to get more information. You can use nmap to detect some vulnerable programs along with some os fingerprinting capabilities. nmap may also reveal that
you may have to download some config files to do this, though i believe much of that is included with the standard nmap installation and probably moreso with the kali's repos' installation
Further, use metasploit and/or similar tools to perform further vulnerability checks and attempt exploitation.
Web vulnerability scanning tools are also available out the wazoo to attack the website.
and since it's pentesting, try some common SSH username/password combos.
I'll penetrate your test if you smell what I'm cooking.
>>54849515
fried chicken
