LEARN MORE...

Attack and Penetration Test Plan

User Generated

zsw788878

Computer Science

Description

You are the owner and operator of a small information security consulting firm. You have received a request from one of your clients, Infusion Web Marketing, that you provide a written proposal for performing a penetration test on the company's production Web servers and corporate network.

Environment:

Scope

Production e-commerce Web application server, the e-commerce Web application server is acting as an external point-of-entry into the network:

  • Ubuntu Linux 16.04 LTS Server (TargetUbuntu01)
  • Apache Web Server running the e-commerce Web application server
  • Credit card transaction processing occurs on all web servers

Intrusive or Non-Intrusive

Intrusive. The test will include penetrating past specific security checkpoints.

Compromise or No Compromise

No compromise. The test can compromise with written client authorization only.

Scheduling

Between 2:00 a.m – 6:00 a.m. weekend only (Saturday or Sunday)

Using the information from the scenario above, provide a written attack and penetration testing plan, describing your firm's approach to performing the penetration test and what specific tasks, deliverables, and reports you will complete as part of your services. The plan should include these sections:

  • Table of Contents
  • Project Summary
  • Goals and Objectives
  • Tasks
  • Reporting
  • Schedule

Your penetration testing plan is required to be 4-5 pages in length, not including the title and references pages, and cite at least three credible sources other than the course materials. It should follow APA style guidelines, as appropriate.

User generated content is uploaded by users for the purposes of learning and should be used following Studypool's honor code & terms of service.

Explanation & Answer

I appreciate working with you! In case of any further edits, please do not hesitate to let me know! See you soon! Remember me as always! Would love and appreciate to work with you in the future! Goodbye

Running head: PENETRATION TESTING PROPOSAL

Infusion Web Marketing Penetration Testing Proposal
Names:
Institution:

1

PENETRATION TESTING PROPOSAL

2

Contents
Project summary ......................................................................................................................... 3
Goals and objectives ................................................................................................................... 4
Tasks........................................................................................................................................... 4
Network and system reconnaissance ...................................................................................... 5
Network vulnerability testing ................................................................................................. 5
Testing the vulnerability of the server .................................................................................... 5
Reporting .................................................................................................................................... 6
Schedule ..................................................................................................................................... 6
References .................................................................................................................................. 7

PENETRATION TESTING PROPOSAL

3

Infusion Web Marketing penetration testing proposal
Project summary
Technology has become a vital part of businesses in the present century. While
companies like Infusion Web Marketing are shifting to technologies such as sophisticated
server systems to process and store credit card information for their clients, they create new
channels that expose them to c...

Honor Code
flag Report DMCA

Review

Review

Honor Code
flag Report DMCA
Anonymous
Great content here. Definitely a returning customer.
Studypool
4.7
Trustpilot
4.5
Sitejabber
4.4

Similar Content

CJ216 Center for Innovative Training Improve Performance of A Slow System HW
I want you to compile a technical report on how the following problems can be resolved. All your literature sources should...
Richland Community College Database Design Worksheet
In Chapter 5, we cover primary and foreign key for entities. Each entity in a DB environment should a primary key (PK). A ...
SAU Computer Science Entity Relationship Diagrams Project
1. Create an ER diagram for the following requirements. Use cardinality ratio and participation constraints to indicate th...
UMKC Project Management Green Project Case Study Discussion
Please find the attached document for the topic on case study.Discuss about the questions mentioned in end of case study (...
Principles of Database Systems
Use Oracle SQL Developer Data Modeler to do this assignment, follow instructions in PDF...
CIS524 week 10
Week 10 Term Paper 1 SubmissionIf you are using the Blackboard Mobile Learn iOS App, please click "View in Browser”Click...
Response To Apa Adoption.
The discussion starts well by acknowledging the adoption of APA 7 due to some alterations made to improve the previous edi...
Tutor 1 5
Chapter 3 of the text by (Creswell & Creswell, 2018) focuses on the use of theories in studies that are qualitative, quant...
Networking Solution.edited
There are several challenges to designing the network. First, network access control is a standard that requires extensive...

Related Tags

software engineering networking File Source parity bits technology value Software Testing technology data integration Data warehouse WAN Implementation information technology