Pen testing can be mundane and tedious work, which can cause people to lose track and make mistakes. Scripting helps document the process while automating the workflow and cutting down on errors. In this episode, you can learn about four different scripting programs: Bash (Bourne Again Shell), PowerShell, Ruby, and Python. Familiarize yourself with variables, substitutions, common operations, logic, basic I/O, error handling, arrays, and encoding/decoding.
- Many times, as you engage in penetration testing,…you're going to be typing commands over and over again.…And they may be the exact same commands,…which is really tedious,…or they could be almost the same command,…but something's changed.…For example, let's say that you want to launch nmap…on a series of hosts, a series of targets.…Yes, you can create lists and pass them to nmap,…or you could write a little program…that would actually do it for you and issue these commands…because maybe you want to issue an nmap command…and based on the response, you want to issue…some other commands for the same target…or for the same port or port range.…
Whatever you want to do,…it's easier to automate these activities…because when you start typing things over and over again,…it gets tedious and actually, even worse than that,…it's prone to error.…So in penetration testing, we commonly will automate tasks…through the use of scripts.…Now, scripts will allow us to create these tasks…that we don't have to type over and over again.…
Author
Michael Solomon
Released
11/28/2018We are a CompTIA Content Publishing Partner. As such, we are able to offer CompTIA exam vouchers at a 10% discount. For more information on how to obtain this discount, please download these PDF instructions.
Skill Level Intermediate
Duration
Views
-
1. Using Scripting in Pen Testing
-
Using scripting in pen testing12m 42s
-
Bash scripting basics15m 6s
-
Bash scripting techniques10m 17s
-
PowerShell scripts4m 12s
-
Ruby scripts6m 39s
-
Python scripts5m 55s
-
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.
Share this video
Embed this video
Video: Using scripting in pen testing