Penetration Test Archives - Devendrakumar Shirbad

Cybersecurity Labs

Cryptographic Failures

In this post, we will understand basic cryptographic failures and introduce public and private encryption keys.

Application Security, Cryptography, Data Security, Penetration Test, Vulnerability Assessment

Cryptographic Failures Read More »

Cybersecurity Labs

Broken Access Control

In this post, we will understand what a broken access control looks like and why it is #1 in OWASP Top Ten.

Application Security, Identity Management, Penetration Test, Vulnerability Assessment

Broken Access Control Read More »

Cybersecurity Labs

Dz-Owasp #Vulnerable

In this post, we will create a new VM for the Open Worldwide Application Security Project (OWASP) tools e.g. WebGoat, Juice Shop and ZAP.

Application Security, Enterprise Security, Penetration Test, Vulnerability Assessment

Dz-Owasp #Vulnerable Read More »

Cybersecurity Labs

Owasp: Open Worldwide Application Security Project

In this post, we will understand what OWASP is and its main projects e.g. WebGoat, Juice Shop, ZAP and OWASP Top Ten.

Application Security, Penetration Test, Vulnerability Assessment

Owasp: Open Worldwide Application Security Project Read More »

Cybersecurity Labs

Nmap: Network Mapper

In this post, we will use the nmap for host discovery, port-scanning, service detection and vulnerability assessment.

Ethical Hacking, Network, Penetration Test, Vulnerability Assessment

Nmap: Network Mapper Read More »

Cybersecurity Labs

Quality Control

Let’s apply quality parameters. Quality control is a process by which entities review the quality of all factors involved in production.

Enterprise Security, Penetration Test, Virtualization, Vulnerability Assessment

Quality Control Read More »

Cybersecurity Labs

Dz-Win10 #Vulnerable

This system will act as a victim so we intentionally disable the security settings and make it vulnerable. You never do it in PROD systems.

Enterprise Security, Penetration Test, Virtualization, Vulnerability Assessment

Dz-Win10 #Vulnerable Read More »

Cybersecurity Labs

Dz-Metasploit #Vulnerable

Metasploitable is an intentionally vulnerable Linux virtual machine. This VM can be used to conduct security training, test security tools.

Enterprise Security, Penetration Test, Virtualization, Vulnerability Assessment

Dz-Metasploit #Vulnerable Read More »

Cybersecurity Labs

Dz-Kali #Penetration-Testing #Security-Assessment

Kali Linux is an Advanced Penetration Testing Linux distribution used for Penetration Testing, Ethical Hacking, and security assessment.

Enterprise Security, Penetration Test, Virtualization, Vulnerability Assessment

Dz-Kali #Penetration-Testing #Security-Assessment Read More »

PCI DSS

Requirement 11: Test Security Regularly

System components, processes, and bespoke and custom software should be tested frequently to ensure security controls continue to reflect.

Compliance, Data Security, Network, Penetration Test, Vulnerability Assessment

Requirement 11: Test Security Regularly Read More »