Penetration Testing Midterm Report

Posted Under: Cyber Security

Ask A Question

Hire Experts For Answers

Order Now

Related Study Services

DESCRIPTION
Posted
Modified
Viewed 15
You are hired to conduct an external network reconnaissance assessment. Your active recon aims to help the customer identify risk (as defined by the CVSS) associated with all discovered devices within scope. Your passive recon should enumerate who owns and/or operates the target network along with potential social engineering attack vectors. The company hiring you requires the vulnerability report in Microsoft Word format. Your report should be professional in appearance and include the following sections: Cover Page Table of Contents Executive Summary: Scope, discovery results, and recommendations. Tip: be less academic and technical in this section. Limit narratives on the command you executed; rather, talk about the identified risk(s), and recommendations. Risk Rating System: Same CVSS matrix used in Assignment 3 Assessment Risk Summary: Include 2 tables in this section: one that summarizes the total number of critical, high, and medium risk(s) identified on the target network. A second, that summarizes the number of critical, high, and medium risks for each host found on the target network. Detailed Findings: Include a "Detailed Findings" table for all vulnerable hosts. Be sure your detailed findings table includes a row that lists "remediation" actions. You are only required to provide tables for CVE's rated medium - critical. Appendix A: Attack surface topology drawing. Provide a network topology showing ALL live hosts identified on the target network. This drawing should also include adjacent networks. Although the target network is public, are you able to enumerate a default network route "in front" of the target? The scope of this assignment is reconnaissance only; however, can you find any evidence in your assessment on the internal/private network(s) any found hosts might pair with? Appendix B: Use this section to cut/paste scan or query results. If the results are very long, you can use this section to reference any attached files that contain the results. Scope: your target is the Class C public network 198.7.244.0/24. The scope of this assessment is passive and active reconnaissance only. Attempts to exploit any host(s) are strictly prohibited. All IP addresses and ports associated with the target network are within scope. This must be done using Kali Linux
Scan Assignment
Attachments

No uploads for this question

Explanations and Answers 1
0
Question You are hired to conduct an external network reconnaissance assessment. Your active recon aims to help the customer identify risk (as defined by the CVSS) associated with all discovered devices within scope. Your passive recon should enumerate who owns and/or operates the target network along with potential social engineering attack vectors. The company hiring you requires the vulnerability report in Microsoft Word format. Your report should be professional in appearance and include the following sections: Answer: Please find attached the completed results. Let me know if you need anything else.
$0.00

From 0 reviews

homeworkdoer
homeworkdoer

answered

Answer Reviews

(0)
Aseifer
Aseifer

reviewed

Really well Organized and detailed work

Post your Answer - free or at a fee

Login to your tutor account to post an answer

Posting a free answer earns you +20 points.

Login

NB: Post a homework question for free and get answers - free or paid homework help.

Get answers to: Penetration Testing Midterm Report or similar questions only at Tutlance.

Related Questions