Please complete the following two sections as follows. Additional guidance can be found in the Template attchment.

Maintaining Access

As apart of a penetration test proposal for Haverbrook create a Maintaining Access section that describes the techniques and software you would use to maintain access to the target network and/or system after having gained access via methods outline in the Gaining Access Section. Two page minimum.

Scenario

As a penetration tester, you need to figure out how you will maintain control of the system. To have a clear execution plan, you need to think about the best techniques and procedures when pivoting to obtain main access and control of the targeted system.

Some of the command and control techniques you may use are methods of pivoting, such as elevation of privilege, password cracking, impersonation, DNS cache poisoning, and IP spoofing.

Covering Your Tracks

In the Covering Your Tracks section, you will provide a two-page description of the methods, software tools, and any other means of avoiding detection and how each of these techniques would be used to hide your activities within the target systems.

Scenario

You know there are tools available in the operating system to perform cleanup. For instance, you can hide any malicious files introduced during exploitation by using steganographic techniques or NTFS streams to maintain future access to the target.

Additionally, you will make sure all the point of entries are accounted for, and you will keep track of any modifications you made. You will remove any malware, tools, or other nonnative files you placed on the system. You know that you can delete these files throughout an intrusion, keeping your footprint low, or remove them as part of the post intrusion cleanup process.