Beer Yaakov Talmudic Seminary Gaining Access Process Test Proposal Paper Centralia Security Lab has been hired by Haverbrook Investment Group to perform pe

Beer Yaakov Talmudic Seminary Gaining Access Process Test Proposal Paper Centralia Security Lab has been hired by Haverbrook Investment Group to perform penetration testing on its systems. As a pen tester, you have been assigned to write the plan for what Centralia will do in the testing.

Instructions

After collecting enough information about the target you will describe how to use that information to gain access to Haverbrook’s systems. Your one- to two-page plan on gaining access should include:

details of the gaining access process in regards to the techniques commonly used to exploit low-privileged user accounts by cracking passwords through techniques such as brute-forcing, password guessing, and social engineering, and then escalate the account privileges to administrative levels, to perform a protected operation.
an implementation outline of any software that will be used in gaining access to the network(s) or system(s) You may include open source and commercial tools available to execute the actual exploit: Burp Suite, Cain and Abel, Core Impact, John the Ripper, Metasploit, and others. You can also use some programming languages, such as Javascript, Perl, Python, Ruby, or C++, if you choose to develop custom exploits.

As you are developing the Gaining Access Plan, keep these questions in mind:

How would you escalate your privileges?
How would you establish a command and control communication channel?

USE TEMPLAYE BELOW Penetration Test Proposal
Deliverable 3: Gaining Access Plan
Name:
Course Number and Section:
Instructor:
Date:
Gaining Access
Overview
Provide a summary of the Gaining Access phase.
Vulnerable Resources
Identify the resources where vulnerabilities can be located and include a brief description of those
resources. Be sure to include a reference to the vulnerability, i.e., NVD.
Techniques and Software
Provide the techniques and any software, applications, or scripts that will be used in gaining access to the
network(s) or system(s) along with a description of each technique. Refer to Chapter 6 in the textbook for
additional information.
References

Purchase answer to see full
attachment