Security Book
Introduction
The Basics
- Linux
- Windows
- Scripting With Python
  - Python Fundamentals
  - Useful Scripts
- Transferring Files
  - Transfering Files on Linux
  - Transfering files on Windows
- Firewalls
- General tips and tricks
- Cryptography
Recon and Information Gathering Phase
- Passive Information Gatherig
  - Identify IP-addresses and Subdomains
    - Identify IP-addresses
    - Find Subdomains
  - Identifying People
  - Search Engine Discovery
  - Identifying Technology Stack
- Active Information Gathering
  - Port Scanning
Vulnerability analysis
- Non-HTTP Vulnerabilities
  - Common ports\/services and how to use them
  - Port Knocking
- HTTP - Web Vulnerabilities
  - Common Web-services
  - Authentication
    - OAuth
  - Session Management
    - Ses
  - Broken Authentication or Session Management
  - Session Fixation
  - WAF - Web Application Firewall
  - Attacking the System
    - Local File Inclusion
    - Remote File Inclusion
    - Directory Traversal Attack
    - Hidden Files and Directories
    - SQL-Injections
    - Nosql-Injections
    - XML External Entity Attack
    - Bypass File Upload Filtering
    - Exposed Version Control
    - Directory Traversal Attack
    - Host Header Attack
    - Deserialization attacks
- Attacking the User
- Automated Vulnerability Scanners
Exploiting
Post Exploitation
Password Cracking
Pivoting - Port forwarding - Tunneling
Network traffic analysis
Wifi
- WEP
- WPS
Physical access to machine
Literature

Powered by GitBook

WPS

WPS

results matching ""

No results matching ""