Many security firms test your skills and aptitude during interviews and hands-on assessments.  What would you do?

Some ideas:

– ifconfig -a
– route
– nmap -A 10.5.1.0/24
– ./nikto -h 10.5.1.10
– dirbuster (use zapproxy)
– sqlmap
./sqlmap.py -u “http://dmza.example.net/authors.php?id= -users -dbs

Also, view source, edit robots.txt

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.