Be’er Yaakov Talmudic Seminary I need my ethical hacker paper edited and added onto according to teachers suggestions
ANSWER
Rules of Engagement:
- 11.2.2: Develop a formal plan for a penetration test including security tool recommendations for management. Add specific security tool recommendations to your plan. You can mention tools like Nmap, Wireshark, Burp Suite, or other relevant tools based on your assessment needs.
- 13.1.4: Convey to management the dangers that social engineering presents to an organization. Provide more detailed information about the dangers of social engineering, such as phishing attacks, pretexting, tailgating, and their potential impact on an organization. Explain how these attacks can compromise sensitive data, disrupt operations, or lead to financial losses.
Scanning Plan:
- 1.2: Ensure that you have in-text references to cite sources properly. This helps in maintaining academic integrity and providing credibility to your work.
- 2.1: Start by explaining the concept of passive and active reconnaissance, differentiating between them, and then transition into the scanning phase. Clarify the difference between active reconnaissance and footprinting, as well as how active reconnaissance differs from active scanning.
- 12.1.2: Identify vulnerabilities within a company’s network and explain mitigation strategies to management. Be sure to include specific mitigation strategies for the vulnerabilities you identify. This might involve patching software, implementing network segmentation, or enhancing user training.
- 13.1.4: Convey to management the dangers that social engineering presents to an organization. Elaborate on the dangers posed by social engineering, such as unauthorized access, data breaches, and reputational damage. Provide real-world examples to illustrate these risks.
Gaining Access Plan:
- 1.2: Address the inconsistencies in APA format, including font, spacing, and other formatting details, to ensure your document adheres to proper academic standards.
- 2.1: Clearly identify and frame the problem or issue related to gaining access in your plan. Explain the specific goals and objectives of this phase.
- 11.2.2: While you’ve included some security tool recommendations for management, make sure to develop a more formalized plan for the penetration test. Outline the steps, methodologies, and timelines for this phase.
- 13.2.1: Focus on the competency of scanning networks and enumerating available hosts and describing characteristics of common operating systems in more detail. Provide specific examples or scenarios to demonstrate your understanding.
- 13.2.3: When mentioning industry tools, explain how these tools will be used to both identify and remediate security issues during the penetration test. Provide context and examples of how these tools contribute to the process.
Incorporating these suggestions into your submissions should help improve the quality and completeness of your penetration testing plans.
QUESTION
Description
Feedback for Rules of Engagement
Submission Feedback
11.2.2: Develop a formal plan for a penetration test including security tool recommendations for management.: Need to include some security tool recommendations for management.
13.1.4: Convey to management the dangers that social engineering presents to an organization.: Provide more details about the dangers that social engineering presents to an organization.
Feedback for Scanning PlanSubmission Feedback1.2: Communicate using appropriate writing conventions, including spelling, grammar, mechanics, word choice, and format.: Missing in-text references
2.1: Identify and frame a problem or issue.: I would start with passive and active reconnaissance and then get into scanning phase. Remember the difference between active reconnaissance and footprinting. Also how active reconnaissance differentiates from active scanning. 12.1.2: Identify vulnerabilities within a company’s network and explain mitigation strategies to management.: What are the mitigation strategies?13.1.4: Convey to management the dangers that social engineering presents to an organization.: Need to explain the dangers that social engineering presents to the organization.
Feedback for Gaining Access Plan
Submission Feedback
1.2: Communicate using appropriate writing conventions, including spelling, grammar, mechanics, word choice, and format.: I took one point because there are some inconsistencies with APA format (i.e. font, spaces and so on). References are good, so for that reason I didn’t take more.2.1: Identify and frame a problem or issue.: You provided enough details about gaining access, but need to identify and frame the problem or issue.11.2.2: Develop a formal plan for a penetration test including security tool recommendations for management.: Did a better job including some security tool recommendations for management, but did not develop a formal plan for a penetration test.13.2.1: Scan networks and enumerate available hosts and describe characteristics of common operating systems.: Stick to the competency. In this case “Scan networks and enumerate available hosts and describe characteristics of common operating systems.” Gave you some points, but you didn’t cover it well enough.13.2.3: Use industry tools to identify and remediate security issues.: You mentioned some industry tools, but not to identify and remediate security issues.
![Place Your Order Here](http://scholarywriters.com/wp-content/uploads/2023/08/Bottom-of-every-post.png)