Many security firms test your skills and aptitude during interviews and hands-on assessments. What would you do?
Some ideas:
– ifconfig -a
– route
– nmap -A 10.5.1.0/24
– ./nikto -h 10.5.1.10
– dirbuster (use zapproxy)
– sqlmap
./sqlmap.py -u “http://dmza.example.net/authors.php?id= -users -dbs
Also, view source, edit robots.txt