From the course: CompTIA PenTest (PT0-002) Cert Prep
Unlock this course with a free trial
Join today to access over 23,200 courses taught by industry experts.
Miscellaneous local host vulnerabilities
From the course: CompTIA PenTest (PT0-002) Cert Prep
Miscellaneous local host vulnerabilities
- It seems like we just keep going further and further and further through this long list of ways that you can actually attack any type of computing device. And that's really the case. There's lots of opportunities out there. Part of the PenTest exam is all about trying to get a very good survey of all the different areas. The list is not exhaustive. We're not hitting everything, but we're hitting a lot of the really good areas that are likely to yield vulnerabilities for you when you conduct PenTests. What about default account settings? We haven't even really talked about what's left over. Anytime an installation leaves artifacts from that installation that are really not in use, those could be a gold mine for a PenTester. A default account basically means an account that came out of the box from an operating system, from application software, maybe a database environment. But its default accounts that are defined as part of the installation process. Well, those are well known…
Contents
-
-
-
-
-
-
-
OWASP Top 108m 40s
-
(Locked)
Application exploits, part 15m 34s
-
(Locked)
SQL injection demo8m 41s
-
(Locked)
Labtainers lab: SQL injection2m 38s
-
(Locked)
Application exploits, part 28m 2s
-
(Locked)
Application exploits, part 39m 11s
-
(Locked)
Cross-site scripting demo7m
-
(Locked)
Labtainers lab: Cross-site scripting1m 36s
-
(Locked)
Labtainers lab: Cross-site request forgery1m 14s
-
(Locked)
Code vulnerabilities16m 36s
-
(Locked)
API attacks and attack resources6m 28s
-
(Locked)
Privilege escalation: Linux9m 37s
-
(Locked)
Privilege escalation: Windows6m 9s
-
(Locked)
Miscellaneous privilege escalation7m 54s
-
(Locked)
Miscellaneous local host vulnerabilities8m 5s
-
-
-
-
-
-
-
-