From the course: CompTIA PenTest (PT0-002) Cert Prep
Join today to access over 23,200 courses taught by industry experts.
Network segmentation testing
From the course: CompTIA PenTest (PT0-002) Cert Prep
Network segmentation testing
- One aspect of post exploitation activities involves network segmentation testing. It may seem to be a little bit out of place because you may think that network segmentation testing is something that we do to control or to protect a network. A network segmentation test is a test to confirm that the different network segments that should be separate are working as designed. That means that only approved traffic flows between the segments. No gaps could exist that an attacker can exploit, and that's the key. That's why we want to test the networks for proper segmentation, because if the network devices are not segmenting the network segments properly, you may be able to have a presence in one segment and be able to exploit a gap and get into another segment. This involves scanning and carrying out a vulnerability assessment on each network segment that you can access. So here's an example. Let's take a look at the PCI/DSS requirements. PCI requires a network segmentation test to…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.