Publicação
External footprinting security assessments: Combining the PTES framework with open-source tools to conduct external footprinting security assessments
| Resumo: | security assessment activity (either legitimate or not) consists in the information gathering about a specific target. Information gathering, also recognized as footprinting, is the process of collecting all accessible information about that specific target. In a security assessment, the importance of this phase is clamorous and involves the examination, collection and classification of large volumes of data from the target network. The Penetration Testing Execution Standard (PTES), although still in an early and definition stage, provides the description of the processes that are necessary to conduct penetration-testing assessments in a generic and integrated manner. The focus of this article consists in the analysis of the PTES and its recommendations on what concerns footprinting processes and to provide some contributions in terms of the practical applicability of the PTES recommendations. |
|---|---|
| Autores principais: | Serrão, C. |
| Outros Autores: | Dinis, B |
| Assunto: | Penetration testing Pentests Network vulnerabilities PTES Footprinting |
| Ano: | 2014 |
| País: | Portugal |
| Tipo de documento: | documento de conferência |
| Tipo de acesso: | acesso aberto |
| Instituição associada: | ISCTE |
| Idioma: | inglês |
| Origem: | Repositório ISCTE |
| _version_ | 1868443618212052992 |
|---|---|
| author | Serrão, C. |
| author2 | Dinis, B |
| author2_role | author |
| author_facet | Serrão, C. Dinis, B |
| author_role | author |
| country_str | PT |
| creators_json_txt | [{\"Person.name\":\"Serrão, C.\"},{\"Person.name\":\"Dinis, B\"}] |
| datacite.creators.creator.creatorName.fl_str_mv | Serrão, C. Dinis, B |
| datacite.date.Accepted.fl_str_mv | 2014-01-01T00:00:00Z |
| datacite.date.available.fl_str_mv | 2022-07-15T08:39:37Z |
| datacite.date.embargoed.fl_str_mv | 2022-07-15T08:39:37Z |
| datacite.rights.fl_str_mv | http://purl.org/coar/access_right/c_abf2 |
| datacite.subjects.subject.fl_str_mv | Penetration testing Pentests Network vulnerabilities PTES Footprinting |
| datacite.titles.title.fl_str_mv | External footprinting security assessments: Combining the PTES framework with open-source tools to conduct external footprinting security assessments |
| dc.creator.none.fl_str_mv | Serrão, C. Dinis, B |
| dc.date.Accepted.fl_str_mv | 2014-01-01T00:00:00Z |
| dc.date.available.fl_str_mv | 2022-07-15T08:39:37Z |
| dc.date.embargoed.fl_str_mv | 2022-07-15T08:39:37Z |
| dc.format.none.fl_str_mv | application/pdf |
| dc.identifier.none.fl_str_mv | http://hdl.handle.net/10071/25825 |
| dc.language.none.fl_str_mv | eng |
| dc.publisher.none.fl_str_mv | IEEE |
| dc.rights.none.fl_str_mv | http://purl.org/coar/access_right/c_abf2 |
| dc.subject.none.fl_str_mv | Penetration testing Pentests Network vulnerabilities PTES Footprinting |
| dc.title.fl_str_mv | External footprinting security assessments: Combining the PTES framework with open-source tools to conduct external footprinting security assessments |
| dc.type.none.fl_str_mv | http://purl.org/coar/resource_type/c_c94f |
| description | security assessment activity (either legitimate or not) consists in the information gathering about a specific target. Information gathering, also recognized as footprinting, is the process of collecting all accessible information about that specific target. In a security assessment, the importance of this phase is clamorous and involves the examination, collection and classification of large volumes of data from the target network. The Penetration Testing Execution Standard (PTES), although still in an early and definition stage, provides the description of the processes that are necessary to conduct penetration-testing assessments in a generic and integrated manner. The focus of this article consists in the analysis of the PTES and its recommendations on what concerns footprinting processes and to provide some contributions in terms of the practical applicability of the PTES recommendations. |
| dirty | 0 |
| eu_rights_str_mv | openAccess |
| format | conferenceObject |
| id | iscte_00a0cc431ee7a34af2cb9970a02efaec |
| identifier.url.fl_str_mv | http://hdl.handle.net/10071/25825 |
| instacron_str | iscte |
| institution | ISCTE |
| instname_str | ISCTE |
| language | eng |
| network_acronym_str | iscte |
| network_name_str | Repositório ISCTE |
| oai_identifier_str | oai:repositorio.iscte-iul.pt:10071/25825 |
| organization_str_mv | urn:organizationAcronym:iscte |
| person_str_mv | Serrão, C. Dinis, B |
| publishDate | 2014 |
| publisher.none.fl_str_mv | IEEE |
| reponame_str | Repositório ISCTE |
| repository_id_str | urn:repositoryAcronym:iscte |
| service_str_mv | urn:repositoryAcronym:iscte |
| spelling | engsecurity assessment activity (either legitimate or not) consists in the information gathering about a specific target. Information gathering, also recognized as footprinting, is the process of collecting all accessible information about that specific target. In a security assessment, the importance of this phase is clamorous and involves the examination, collection and classification of large volumes of data from the target network. The Penetration Testing Execution Standard (PTES), although still in an early and definition stage, provides the description of the processes that are necessary to conduct penetration-testing assessments in a generic and integrated manner. The focus of this article consists in the analysis of the PTES and its recommendations on what concerns footprinting processes and to provide some contributions in terms of the practical applicability of the PTES recommendations.application/pdfengIEEEengExternal footprinting security assessments: Combining the PTES framework with open-source tools to conduct external footprinting security assessmentsSerrão, C.Dinis, BHandlehttp://hdl.handle.net/10071/25825ISBNIsPartOf978-1-908320-36-0DOIIsPartOf10.1109/i-Society.2014.70090662022-07-15T08:39:37Z2014-01-01T00:00:00Z20142022-06-28T09:29:20Zhttp://purl.org/coar/access_right/c_abf2open accessengPenetration testingengPentestsengNetwork vulnerabilitiesengPTESengFootprinting11307773 byteshttp://purl.org/coar/access_right/c_abf2application/pdffulltexthttps://repositorio.iscte-iul.pt/bitstreams/9c868ed8-dffa-4926-b73f-1d980893cfdc/downloadother research producthttp://purl.org/coar/resource_type/c_c94fconference object |
| spellingShingle | External footprinting security assessments: Combining the PTES framework with open-source tools to conduct external footprinting security assessments Serrão, C. Penetration testing Pentests Network vulnerabilities PTES Footprinting |
| status | SINGLETON |
| subject.fl_str_mv | Penetration testing Pentests Network vulnerabilities PTES Footprinting |
| title | External footprinting security assessments: Combining the PTES framework with open-source tools to conduct external footprinting security assessments |
| title_full | External footprinting security assessments: Combining the PTES framework with open-source tools to conduct external footprinting security assessments |
| title_fullStr | External footprinting security assessments: Combining the PTES framework with open-source tools to conduct external footprinting security assessments |
| title_full_unstemmed | External footprinting security assessments: Combining the PTES framework with open-source tools to conduct external footprinting security assessments |
| title_short | External footprinting security assessments: Combining the PTES framework with open-source tools to conduct external footprinting security assessments |
| title_sort | External footprinting security assessments: Combining the PTES framework with open-source tools to conduct external footprinting security assessments |
| topic | Penetration testing Pentests Network vulnerabilities PTES Footprinting |
| topic_facet | Penetration testing Pentests Network vulnerabilities PTES Footprinting |
| url | http://hdl.handle.net/10071/25825 |
| visible | 1 |