Assignment Problem: The objective of the final lab is to use the skills, techniques, and tools you have learned in this course to obtain a set of flags (hints) and compromise all the systems of our mock company by performing a penetration test. You will need to use everything from nmap scans and DNS zone transfers to Metasploit and some ingenuity to accomplish this goal.
Scope:
Our mock company's name is DePaulSecLabs, Inc. with the domain name cns388corp.depaulseclabs.com. The starting network range for our company is 10.12.student#.0/24. Do not scan any internet systems (aka not in the 10.0.0.0/8 range)as they are not part of this exercise and are most likely out-of-scope infrastructure. You do not need to do any recon on this on the public internet, it IS NOT a real company.
Company name: DePaulSecLabs, Inc.
Starting IP range - 10.12.student#.0/24 (all live systems reside in this range)
Out of Scope - 10.12.student#.254 (do not attack this IP, it is network infrastructure)
Domain name - cns388corp.depaulseclabs.com
Procedures:
Throughout this lab, and as you complete tasks, you will obtain flag files (most of which can be cat'd out to a terminal screen, some will need to be downloaded). The flags will be in the following format: CNS-1234-AAAA.
Your first hint is here:
You know the IP range of our company, now scan it with nmap to map the environment (remember, it is everything in 10.12.student#.0/24). How many systems are live, what ports and services are open? If you find a web server, examine it to get the first hint...
As you compromise the systems, you will notice that you may have some powerful access to these systems. With power comes responsibility. Just like a real customer environment, be careful what modifications you make to the systems. You don't want to lock yourself (or your customers) out of their own boxes. Since I'm tracking what you do and when, both on the Kali box as well as the systems you're compromising, you should probably be honest if you make a mistake.
For all the students, who are not capable to precisely complete their own assignment paper; we come up with Security Testing Assignment Help service, to eradicate all their academic problems.
Tags: Security Testing Assignment Help, Security Testing Homework Help, Security Testing Coursework, Security Testing Solved Assignments
Attachment:- Security Testing and Assessment.rar