-
Course
- Security
Information Gathering and Vulnerability Scanning for CompTIA Pentest+
Reconnaissance is one of the most important phases in a penetration testing engagement. This course will teach you how to perform information gathering and vulnerability scanning needed for the CompTIA Pentest+ certification.
What you'll learn
With the pentest plan and scope defined, your next step it to gather information about your target as well as perform vulnerability scans to understand the potential attack vectors that can be exploited. In this course, Information Gathering and Vulnerability Scanning for CompTIA Pentest+, you’ll learn how to gather personal and technical information about your target that will be later used during the exploitation phase. First, you’ll explore how to gather technical information about your target. Next, you’ll discover how to harvest information about the employees of a company. Finally, you’ll learn how to perform vulnerability scans to identify potential vulnerabilities. When you’re finished with this course, you’ll have the skills and knowledge of Information Gathering and Vulnerability Scanning needed for the CompTIA Pentest+ Certification (PT0-002).
Table of contents
- Understanding Information Gathering and Vulnerability Scanning | 6m 58s
- Understanding Passive and Active Information Gathering | 7m 40s
- Passive Technical Information Gathering | 3m 34s
- Searching Third-Party Sources of Information | 7m 20s
- Actively Gathering Domains/IP Addresses | 2m 39s
- Gathering Technical Information with OWASP Amass | 8m 6s
- Searching Information with Shodan and Recon-ng | 7m 18s
- Actively Gathering Port and Service Information | 3m 12s
- Interacting with a Service Using NetCat | 4m 47s
- NMap Port Scanning | 9m 9s
- Scanning Servers with NMap | 8m 34s
- Website Scrapping and Crawling | 2m 26s
About the author
Ricardo is a Cybersecurity Consultant based in Toronto (Canada). He has 10+ years of IT experience, 6 of them in the IT Security field. His main interests are: SIEM solutions (IBM QRadar), Enterprise Security Risk, Penetration Testing, Security processes/procedures and Network Security.
More Courses by Ricardo