Conducting Active Reconnaissance for CompTIA PenTest+

by Dale Meredith

Active reconnaissance is a necessary evil. It can sometimes alert defense teams and systems that you're snooping around, but it also helps you to see and document everything about each note on the network. Learn how to active recon the right way.

Preview this course

What you'll learn

Up until now, we have been "quiet" as far as reconnaissance goes. But the downside is that many times we won't see every single system through passive methods. This is were Active Reconnaissance comes in to play.

In this course, Conducting Active Reconnaissance for CompTIA PenTest+, you will gain the ability to discover more network nodes and collect system information during your penetration tests. First, you will learn how to discover all the targets on a given network. Next, you will discover how to use enumeration to find services and even accounts on the targets. Then, you will see how to scan each one for vulnerabilities which might allow someone to gain unauthorized access to protected digital or electronic materials, and may go around routers or even firewalls to get in. Finally, you will explore how to look at different types of scripts and some cool tools to help automate your tasks.

When you’re finished with this course, you will have the skills and knowledge of discovering as many nodes, services accounts, and even some vulnerabilities needed to cover every aspect of the active reconnaissance step within any pentest engagement.

Course Overview

3mins

Course Overview 3m

Scanning the Network

49mins

Course Introduction 2m
The Goals and Types of Scanning 7m
Your New Best Friend: Nmap 5m
Demo: A Little Housekeeping and Some Discovery Scanning 9m
Demo: Port Scanning 7m
Demo: Stealth Scanning 7m
Demo: Full Scans 8m
Packet Crafting 3m
What We Learned 1m

Mapping the Network and Using Metasploit

26mins

Mapping the Network 7m
Your Other Best Friend: Metasploit 4m
Demo: Take Metasploit for a Test Drive 7m
Demo: Continuing to Test Drive Metasploit 8m

The Basics of Enumerating

40mins

The Goal of Enumeration 4m
Banner Grabbing 1m
Demo: Grabbing Some Banners 7m
Windows Host Enumeration 1m
Demo: Enumerating Windows Using Built-in Commands 10m
Demo: Enumerating Windows Using Powershell Commands 7m
Demo: Our Best Friend Nmap is Back 3m
Demo: More Metasploit Goodness 7m

Linux and Other Items to Enumerate

37mins

What You'll Learn 1m
Linux Host Enumeration 1m
Demo: Enumerating Linux Using Built-in Commands 10m
Service and Application Enumeration 9m
Network Shares 2m
Demo: Enumerating Network Shares 4m
Null Sessions 2m
Website Enumeration 2m
Demo: Enumerating a Website 4m
What We Learned 2m

Now Scan for Vulnerabilities

31mins

What You'll Learn 1m
What Are Vulnerability Scans? 2m
The Tools of the Trade 5m
Types of Vulnerability Scans: Compliance, Host, and Credentials 3m
Types of Vulnerability Scans: Service, Web-server, and Database 6m
Types of Vulnerability Scans: Application, Network Devices, and Packet Crafting 5m
Types of Vulnerability Scans: Firewalls, Packet Inspection, and WAPs 4m
Types of Vulnerability Scans: Containers and What's Next 4m
What We Learned 1m

Automating with Scripts

43mins

Why Scripting? 2m
Getting Your BASH, Powershell, Python and Ruby On! 7m
Variables 2m
Arrays 3m
Operations 4m
Input/Output 3m
Input/Output Examples 5m
Encoding and Decoding 3m
Prepacked Scripting Tools 5m
New Pentesting Document Solutions 8m
Don't Miss This Clip! 1m

About the author

Dale Meredith

Dale Meredith has been a Certified Ethical Hacker/Instructor EC-Council for the past 15 years, and Microsoft Certified Trainer for over 20 years. Dale also has an additional 7 years of senior IT management experience and worked as a CTO for a popular ISP provider. Dale's expertise is in explaining difficult concepts and ensuring his students have an actionable knowledge of the course material. Straddling the line of fun and function, Dale's instruction is memorable and entertaining. Dale's knowl... more

See more courses by Dale Meredith

Ready to upskill? Get started

Contact Sales

50% off

50% off

50% off

50% off

50% off

50% off

50% off

50% off

50% off

50% off

Conducting Active Reconnaissance for CompTIA PenTest+

What you'll learn

Table of contents

About the author

Ready to skill up
your entire team?

With your Pluralsight plan, you can:

With your 30-day pilot, you can:

Ready to skill up
your entire team?

With your Pluralsight plan, you can:

With your 30-day pilot, you can:

Support

Community

Company

Industries

Newsletter

Contact Sales

50% off

50% off

50% off

50% off

50% off

50% off

50% off

50% off

50% off

50% off

Conducting Active Reconnaissance for CompTIA PenTest+

What you'll learn

Table of contents

About the author

Get access now

Ready to skill upyour entire team?

With your Pluralsight plan, you can:

With your 30-day pilot, you can:

Ready to skill upyour entire team?

With your Pluralsight plan, you can:

With your 30-day pilot, you can:

Support

Community

Company

Industries

Newsletter

Ready to skill up
your entire team?

Ready to skill up
your entire team?