Ethical Hacking – Reconnaissance and Scanning Plans

Outline and discuss specific use cases to discover and enumerate information that could be used for potential exploitation. Some examples of information that you are gathering from Haverbrook Investment Group’s systems are usernames, machine names, shares, and services from a system. Identify any software, applications, or scripts that will be needed and provide a description of how this software will be used to gather information about Haverbrook’s systems.

As you are developing the Scanning Plan, keep these questions in mind:

How would you detect active systems?
How would you determine the best attack vector you wish to exploit?
How would you prioritize different targets of opportunity?
What tools would you be using for scanning and enumeration of systems and vulnerabilities?
Be sure to identify any needed software and provide a description of how it will be used to gather information about the systems.

Use the Reconnaissance and Scanning plans template (attached) from last week to finish your deliverable.

Also, attached are:
Project 2 scenario
RUBRIC
Proj1_Rules_of_Engagement – incase it is needed to get project 2(this assignment)
Haverbrook Investment – for background info on the Company
EXAMPLE_Reconnaissance_Plan_and_Scanning_Plan.docx – Used to get an idea how it should look

Leave a Reply

Your email address will not be published. Required fields are marked *