• Log In
  • Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • HomePage
  • Instructor
  • Syllabus
  • Schedule
    • First Half of the Semester
      • Week 1: Course Introduction
      • Week 2: Meterpreter, Avoiding Detection, Client Side Attacks, and Auxiliary Modules
      • Week 3: Social Engineering Toolkit, SQL Injection, Karmetasploit, Building Modules in Metasploit, and Creating Exploits
      • Week 4: Porting Exploits, Scripting, and Simulating Penetration Testing
      • Week 5: Independent Study – Perform Metasploit Attack and Create Presentation
      • Week 6: Ettercap
      • Week 7: Introduction to OWASP’s WebGoat application
    • Second Half of the Semester
      • Week 8: Independent Study
      • Week 9: Introduction to Wireless Security
      • Week 10: Wireless Recon, WEP, and WPA2
      • Week 11: WPA2 Enterprise, Wireless beyond WiFi
      • Week 12: Jack the Ripper, Cain and Able, Delivery of Sample Operating Systems
      • Week 13: Independent Study – Analyze provided Operating System Samples and Create Assessment Report
      • Week 14: Deliver Assessment to Operating System Class either in person or via teleconferenc
  • Assignments
    • Analysis Reports
    • Group Project Report and Presentation
  • Webex
  • Harvard Coursepack
  • Gradebook

MIS 5212-Advanced Penetration Testing

MIS 5212 - Section 001 - Wade Mackey

Fox School of Business

Marcus A. Wilson

How Innovative Companies Lock Down Data

April 16, 2017 by Marcus A. Wilson Leave a Comment

How Innovative Companies Lock Down Data
http://www.darkreading.com/endpoint/how-innovative-companies-lock-down-data-/a/d-id/1328589?

This is an interesting article that discusses companies that are going “back to the basics” on security measures of protecting data while trying to incorporate the newest methods as well. The author discusses the old measures such as enforcing complex passwords, encryption standards, and disaster recovery readiness as the old but still important measures. He also mentions the new direction that companies are going in such as preventing attacking within applications, real-time monitoring, and using deep learning with cybersecurity analytics. A mixture of old reliable methods with new techniques are definitely needed to face the ever-changing security threats.

Blockchain’s New Role In The Internet of Things

February 25, 2017 by Marcus A. Wilson 1 Comment

Blockchain’s New Role In The Internet of Things

http://www.darkreading.com/iot/blockchains-new-role-in-the-internet-of-things/a/d-id/1328239

This article discusses the use of distributed consensus algorithms that combine both performance and security to prevent DDoS attacks such as the Mirai botnet attack that took down Dyn in October. Due to the large number of IoT devices the severity of DDos attacks have increased. By using a distributed consensus architecture you can prevent the attacker from targeting a single server and making them target several servers. This technology is currently used in Bitcoin and other transactional technology but due to performance restraints it hasn’t been a reliable option for DDos defense. However, there are firm developing distributed consensus technology that can handle the performance and security demands.

Assignment 1- Metasploit Analysis

February 22, 2017 by Marcus A. Wilson Leave a Comment

PowerPoint:

Marcus Wilson_Exploiting Metasploitable

Executive Summary

Marcus Wilson_Exploiting Metasploitable Executive Summary

How I Would Hack Your Network (If I Woke Up Evil)

January 28, 2017 by Marcus A. Wilson Leave a Comment

Interesting article that discusses how most cyber attacks are not overly complicated. It outlines a high level approach on how the author would carry out a simple hack to a network. The author mentions some of the topics that we have been discussing in class such as using very basic social engineering based of simple reconnaissance from users’ social media sites. For example, targeting a user that shows a strong political interest throughout their posts. Sending a phishing email that attacks this interest. He also mentions using pivoting and password spraying to try and gain access to any external facing servers.

http://www.darkreading.com/cloud/how-i-would-hack-your-network-(if-i-woke-up-evil)-/a/d-id/1327985?

Primary Sidebar

Weekly Discussions

  • Uncategorized (35)
  • Week 01 (2)
  • Week 02 (14)
  • Week 03 (13)
  • Week 04 (10)
  • Week 05 (7)
  • Week 06 (29)
  • Week 07 (8)
  • Week 08 (1)
  • Week 09 (6)
  • Week 10 (12)
  • Week 11 (7)
  • Week 12 (4)
  • Week 13 (6)
  • Week 14 (18)

Copyright © 2025 · Magazine Pro Theme on Genesis Framework · WordPress · Log in