Information Gathering and Vulnerability Identification for CompTIA PenTest+

Focused View

Dale Meredith

1:25:20

19 View

01 Course Overview

01 Course Overview.mp4

02:44

02 Comparing Different Vulnerability Scanners

02 What Youll Learn.mp4

03:23

03 Open Source vs Commercial.mp4

03:16

04 On prem vs Cloud.mp4

02:59

05 Demo Built in Kali.mp4

06:05

06 Demo OpenVAS.mp4

05:33

07 What You Learned.mp4

00:59

03 Interpreting What You Have Found

08 Heres What Youll Cover.mp4

00:58

09 Asset Categorization.mp4

05:55

10 False Positives.mp4

04:51

11 Adjudication.mp4

02:34

12 Prioritization.mp4

02:29

13 Common Themes.mp4

03:09

14 Demo False Positives Assets and CVSS.mp4

05:57

15 In the Trenches.mp4

03:37

16 What You Learned.mp4

00:57

04 Explaining How to Utilize the Data for Exploitation

17 What Youll Learn.mp4

01:05

18 Mapping and Priorities.mp4

02:09

19 Attack Techniques.mp4

02:24

20 Exploits and Payloads.mp4

02:40

21 Cross Compiled Code.mp4

00:52

22 Exploit Modification.mp4

01:31

23 Exploit Chaining.mp4

01:47

24 Proof of Concept PoC.mp4

01:46

25 Deception Tactics.mp4

02:06

26 Password Attacks.mp4

08:46

27 From the Trenches.mp4

02:42

28 Course Summary.mp4

02:06

Description

This course is a part 5 of the CompTIA PenTest+ series. You have identified the vulnerabilities, now you will use your toolset to identify how to exploit said vulnerabilities to prepare to for exploitation.

What You'll Learn?

Now that you have finished identifying, enumerating, and uncovering vulnerabilities through your active and passive reconnaissance efforts, you have to now figure out what do with this data.

In this course, Information Gathering and Vulnerability Identification for CompTIA PenTest+, you will learn foundational knowledge of and gain the ability to analyze the vulnerabilities you've discovered. First, you will learn how to choose the right vulnerability scanner, be it open-source or commercial, on-prem or cloud-based. Next, you will discover how to organize said data by categorizing the assets, identifying false-positives and preparing for adjudication. Finally, you will explore how to transform this data into actionable exploits. When you’re finished with this course, you will have the skills and knowledge of analyzing the vulnerabilities or order to prepare for the next stage of the penetration testing lifecycle.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Ethical Hacking

Penetration Testing

CompTIA Pentest+

Dale Meredith

Instructor's Courses

Dale Meredith has been a Certified Ethical Hacker/Instructor EC-Council for the past 15 years, and Microsoft Certified Trainer for over 20 years. Dale also has an additional 7 years of senior IT management experience and worked as a CTO for a popular ISP provider. Dale's expertise is in explaining difficult concepts and ensuring his students have an actionable knowledge of the course material. Straddling the line of fun and function, Dale's instruction is memorable and entertaining. Dale's knowledge and understanding of current trends in technology and applications have led to many opportunities, such as: training various Inc 500 companies, universities, and Divisions of the Department of Homeland Security for the United States government. Along with authoring for Pluralsight, consulting, and IT classroom training, you can catch Dale on stage speaking at IT conferences, helping IT teams keep their companies safe, relevant, and "breach" aware. Outside of the professional sphere, Dale spends quite a bit of his time giving back by speaking at adult and youth non-profit community gatherings and posting on his 'Dale Dumbs IT Down' social media sites. Dale uses these speaking engagements and social media sites to 'Dumb Down IT' concepts with the intent to help everyone be safe and smart with their technology and personal devices. Dale also specializes in Active Directory, Exchange Server, IIS, PowerShell, SharePoint, System Center/Desktop Deployment, and Private Cloud

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.