This is the the week, well more specifically Thursday, I got my voucher for the eLearnSecurity eJPT yesterday and today I’ve written out a plan of attack it has 3 phases. I’ve written a cherry tree notebook that drills down more into each topic with useful command ,links, and page number reference to books,but basically it is .
Phase1 :Pre-Exploit
Scanning network and hosts
namp
fping
Phase2: Exploit
Exploit the vulnerabilities:
Metasploit/MSVemon
Zap/Burp
SQLMap
Hydra
Phase3: Post-Exploit
Gather information
Passwords
Network
Privilege Escalation