Linux Attack and Response

CompTIA Security+ (SY601) Domain:
Domain 1.0: Threats, Attacks, and Vulnerabilities

CompTIA Security+(SY601) Objectives:
Objective 1.7: Summarize the techniques used in security assessments

Overview

In this lab, you will get to be the attacker and then you will be able to see what the artifacts are left on the victim machine running Windows server. As the attacker, you will first exploit the remote system. After attacking the victim machine, you will analyze web logs and perform incident response on the compromised host.

outcomes

In this lab, you will learn to:

Exploit Java to attack a remote system.
Collect volatile data.
View logs.

Courses

Linux Based Security+ - Skill Labs

Key terms and descriptions

Kali Linux

Kali Linux is a Linux distribution created for digital forensics and penetration testing.

Metasploit

Metasploit is a penetration testing framework which comes preloaded with Kali Linux. Kali Linux along with Metasploit provides tools for penetration testers to improve security assessments and awareness.

Meterpreter

Meterpreter is a Metasploit attack payload that provides an interactive shell to the victim machine using Metasploit.

Incident Response

Incident Response (IR) is a life cycle that includes preparation, detection and analysis, containment eradication and recovery, and post-incident activity.