0% found this document useful (0 votes)

348 views

Penetration Testing Report

The document details a penetration test of the John Hopkins University website jhu.edu. The test aimed to review the security of jhu.edu's internet infrastructure and identify potential vulnerabilities. It found 8 issues, with 1 medium severity and 7 low severity. Recommendations include confirming exposed source code aspects, restricting access to applications, ensuring server security is implemented, and removing temporary/backup files from the web server.

Uploaded by

Jerome Castillo

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

348 views

Penetration Testing Report

Uploaded by

Jerome Castillo

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 10

Writing penetration testing |1

Penetration Testing Report

Black Box Penetration Testing

For JHU.EDU
V1.0 January 15th, 2015
By: Muhammad Zulkifli B 1112001031

2015 Universitas Bakrie As part of the Information Security Reading Room

Author regains full rights

Writing penetration testing |2

Document properties
Title

Black box penetration testing report

Version

V 1.0

Author

Muhammad Zulkifli B

Pen-testers

Muhammad Zulkifli B

Reviewed By

I Gusti Nyoman Mantra

Approved By

I Gusti Nyoman Mantra

Classification

Confidential

Version Control
Version

Date

Author

Description

V 1.0

January 15th 2015

Muhammad Zulkifli B

Final Draft

2015 Universitas Bakrie As part of the Information Security Reading Room

Author regains full rights

Writing penetration testing |3

DAFTAR ISI
DAFTAR ISI ................................................................................................................................... 3
DAFTAR TABEL ............................................................................................................................. 4
DAFTAR GAMBAR ........................................................................................................................ 4
1.

Kesimpulan Eksekutif............................................................................................................ 5
1.1 Lingkup Pekerjaan ............................................................................................................... 5
1.2 Tujuan Projek ....................................................................................................................... 5
1.3 Asumsi .................................................................................................................................... 5
1.4 Batas Waktu .......................................................................................................................... 5
1.5 Ringkasan Temuan ............................................................................................................... 6
1.6 Ringkasan Rekomendasi ...................................................................................................... 7

Metodologi .......................................................................................................................... 8
2.1 Planning ................................................................................................................................. 8
2.2 Exploitation ........................................................................................................................... 8
2.3 Reporting ............................................................................................................................... 9

Rincian Temuan .................................................................................................................... 9

3.1 Rincian Sistem Informasi ..................................................................................................... 9

Referensi ............................................................................................................................ 10

2015 Universitas Bakrie As part of the Information Security Reading Room

Author regains full rights

Writing penetration testing |4

DAFTAR TABEL
Tabel 1 Penetration Testing Timeline ............................................................................................ 5
Tabel 2 Total Risk Rating .............................................................................................................. 6
Tabel 3 Risk Analysis .................................................................................................................... 9
Tabel 4 Rating Calculation ............................................................................................................ 9
Tabel 5 Targets open ports ........................................................................................................... 9

DAFTAR GAMBAR
Gambar 1 Total Risks.................................................................................................................... 6
Gambar 2 Metodologi Penetration Testing ................................................................................... 8
Gambar 3 Telnet Service Banner ................................................................................................. 10

2015 Universitas Bakrie As part of the Information Security Reading Room

Author regains full rights

Writing penetration testing |5

1. Kesimpulan Eksekutif
Dokumen ini berisikan rincian penilaian keamanan (tes penetrasi eksternal) situs John
Hopkins University (jhu.edu) United States. Tujuan dari penilaian ini yaitu untuk
menyediakan review dari keamanan infrastruktur jhu.edu dan mengidentifikasi
kelemahan potensial pada infrastruktur internetnya.

1.1 Lingkup Pekerjaan

Penilaian keamanan ini mencakup pengujian penetrasi jarak jauh dari server yang
disimpan dan dapat diakses pada alamat IP 128.220.192.40 dan 162.129.6.20.
Penilaian dilakukan dari perspektif black box, dengan informasi tersedia yang diuji
alamat server IP-nya, tahap yang digunakan untuk mengetahui IP server tujuan
berada pada tahap footprinting

1.2 Tujuan Projek

Penilaian keamanan dilakukan untuk mengukur keamanan internet host jhu.edu.
Hasil penilaian kemudian dianalisa untuk kerentanannya. Dengan waktu terbatas
yang diberikan untuk melakukan penilaian, hanya layanan yang dapat dieksploitasi
saja yang dengan segera diuji. Kerentanan ditentukan berdasarkan tingkat resiko
pada ancaman, kerentanan dan dampaknya.

1.3 Asumsi
Sementara menulis laporan, saya mengasumsikan bahwa kedua alamat IP dianggap
sebagai alamat IP publik. NDA dan aturan keterlibatan telah ditandatangani dan
berdasarkan fase pengumpulan informasi pada universitas jhu.edu.

1.4 Batas Waktu

Timeline pengujian adalah sebagai berikut:
Penetration Testing

Start Date/Time

End Date/Time

Pen Test 1

1/13/2015

1/15/2015

Tabel 1 Penetration Testing Timeline

2015 Universitas Bakrie As part of the Information Security Reading Room

Author regains full rights

Writing penetration testing |6

1.5 Ringkasan Temuan

Dampak

Jumlah Resiko

Low

Medium

Important

Critical

Tabel 2 Total Risk Rating

Important Critical
0%
0%
Medium
13%
Low
Medium

Low
87%

Important
Critical

Gambar 1 Total Risks

Jhu.edu memiliki keamanan informasi yang cukup aman, terbukti saya hanya
menemukan 8 celah keamanan dalam waktu pemindaian kurang lebih 6 jam. 1
Sifatnya medium dan 7 lainnya sifatnya rendah
Dibawah ini merupakan dampak dari kerentanan yang ada pada situs jhu.edu

MEDIUM
[Possible] Source Code Disclosure (ColdFusion)
Tergantung pada source code, database connection string, username, dan
password, the internal working dan business logic dari sebuah aplikasi yang
memungkinan bisa terungkap. Dengan informasi tersebut, penyerang dapat
melakukan beberapa jenis serangan:

Mengakses database atau sumber data yang lainnya, tergantung tingkat

hak istimewa dari akun yang diperoleh dari source code. Yang

2015 Universitas Bakrie As part of the Information Security Reading Room

Author regains full rights

Writing penetration testing |7

memungkinan untuk membaca, memperbarui atau bahkan menghapus

data dari database.

Mendapatkan akses password untuk mekanisme administratif seperti

dashboard, konsol manajemen dan panel admin, da juga mendapatkan
kontrol penuh dari aplikasi.

Mengembangkan serangan lebih lanjut dengan meneliti source code untuk

kesalahan input validasi dan logika kerentanan.

LOW
1. Internal Server Error
2. Version Disclosure (Apache)
3. Programming Error Message
4. TRACE/TRACK Method Detected
5. OPTIONS Method Enabled
6. [Possible] Cross-site Request Forgery Detected
7. [Possible] Internal IP Address Disclosure

1.6 Ringkasan Rekomendasi

Mengadopsi

pendekatan

pencegahan

dimana

Jhu.edu

memanfaatkan

keberagaman alat/sistem keamanan untuk melindungi asset dan informasi.

Diantaranya:

Konfirmasi apa-apa saja aspek dari source code yang terbuka; karena
keterbatasan jenis kerentanan, maka bukan tidak mungkin untuk konfirmasi
semuanya sekaligus.

Jika sebuah aplikasi yang dibutuhkan, maka ganti hak akses untuk mencegah
public user ketika ingin mengaksesnya. Jika tidak, hapus dari web server.

Pastikan bahwa semua keamanan servernya sudah diterapkan.

Hapus semua file sementara dan backup file dari web server.

2015 Universitas Bakrie As part of the Information Security Reading Room

Author regains full rights

Writing penetration testing |8

2. Metodologi

planning

information gathering
detecting live systems
reconaissance
scanning and fingerprinting

vulnerability assessment
enumeration
exploitation exploitation

reporting

finding anaysis
risk calculation and rating
reporting

Gambar 2 Metodologi Penetration Testing

2.1 Planning
Selama perencanaan / planning saya mengumpulkan informasi dari sumber-sumber
umum untuk mempelajari tentang target:

Orang-orang dan budaya

Infrastruktur teknis

Kemudian, saya mendeteksi live system OS-nya dan menentukan layanan yang
berjalan dan versi-nya.

2.2 Exploitation
Menggunakan informasi yang dikumpulkan pada perencanaan, saya mulai untuk
menemukan kerentanan untuk setiap OS dan layanan yang saya temukan, setelah
itu kemudian dilakukan eksploitasi.

2015 Universitas Bakrie As part of the Information Security Reading Room

Author regains full rights

Writing penetration testing |9

2.3 Reporting
Berdasarkan hasil dari dua langkah yang pertama, saya mulai menganalisa
hasilnya. Risk rating saya berdasarkan perhitungan ini:
Risk = Threat * Vulnerability * Impact
Threat
Vulnera
bility
Impact

L
M
I
C

Low
L M I

Medium
L
M I

Important
L
M
I

Critical
L
M

1
2
3
4

4
8
12
16

1
4
7
10

8
16
24
32

3
6
9
12

12
24
36
48

4
8
12
16

12
24
36
48

16
32
48
64

2
4
6
8

3
6
9
12

4
8
12
16

6
12
18
24

9
19
27*
36

9
18
27
36

8
16
24
32

Tabel 3 Risk Analysis

L
Low
1-16
M
Medium
17-32
I
Important
33-48
C
Critical
49-64
Tabel 4 Rating Calculation

Setelah menghitung risk rating, saya mulai menulis laporan untuk setiap resiko dan
bagaimana menguranginya.

3. Rincian Temuan
3.1 Rincian Sistem Informasi
IP Address

System
Type
128.220.192.40 Server
162.129.6.20

Server

OS Information

Open Ports
Port #
Protocol
Linux 2.6.39
80
Tcp
443
Tcp
Linux 2.6.9 2.6.18 80
Tcp
443
Tcp
Tabel 5 Targets open ports

2015 Universitas Bakrie As part of the Information Security Reading Room

Service Name
HTTP
SSL/HTTPS
HTTP
SSL/HTTPS

Author regains full rights

W r i t i n g p e n e t r a t i o n t e s t i n g | 10

Kemanan situs jhu.edu cukup bagus karena tidak ada telnet yang dibuka. Berikut
merupakan bukti bahwa saya tidak dapat melakukan telnet pada server 128.220.192.40
dan 162.129.6.20

Gambar 3 Telnet Service Banner

4. Referensi
Lampiran A Netsparker Vulnerability and Nmap Scanning Reports
Melampirkan file scanning Nmap dan Netsparker

2015 Universitas Bakrie As part of the Information Security Reading Room

Author regains full rights

Hourglass Workout Program by Luisagiuliet 2
76% (21)
Hourglass Workout Program by Luisagiuliet 2
51 pages
12 Week Program: Summer Body Starts Now
87% (46)
12 Week Program: Summer Body Starts Now
70 pages
Read People Like A Book by Patrick King-Edited
58% (78)
Read People Like A Book by Patrick King-Edited
12 pages
Livingood, Blake - Livingood Daily Your 21-Day Guide To Experience Real Health
77% (13)
Livingood, Blake - Livingood Daily Your 21-Day Guide To Experience Real Health
260 pages
Cheat Code To The Universe
94% (78)
Cheat Code To The Universe
34 pages
Facial Gains Guide (001 081)
91% (45)
Facial Gains Guide (001 081)
81 pages
Curse of Strahd
95% (467)
Curse of Strahd
258 pages
The Psychiatric Interview - Daniel Carlat
91% (34)
The Psychiatric Interview - Daniel Carlat
473 pages
The Borax Conspiracy
91% (57)
The Borax Conspiracy
14 pages
The Secret Language of Attraction
86% (107)
The Secret Language of Attraction
278 pages
How To Develop and Write A Grant Proposal
83% (542)
How To Develop and Write A Grant Proposal
17 pages
Workbook For The Body Keeps The Score
88% (52)
Workbook For The Body Keeps The Score
111 pages
Donald Trump & Jeffrey Epstein Rape Lawsuit and Affidavits
83% (1016)
Donald Trump & Jeffrey Epstein Rape Lawsuit and Affidavits
13 pages
KamaSutra Positions
78% (69)
KamaSutra Positions
55 pages
7 Hermetic Principles
93% (30)
7 Hermetic Principles
3 pages
27 Feedback Mechanisms Pogil Key
77% (13)
27 Feedback Mechanisms Pogil Key
6 pages
Phone Codes
78% (27)
Phone Codes
5 pages
36 Questions That Lead To Love
91% (35)
36 Questions That Lead To Love
3 pages
Sample Mental Health Progress Note
96% (47)
Sample Mental Health Progress Note
3 pages
2025 MandateForLeadership FULL
70% (10)
2025 MandateForLeadership FULL
920 pages
How To Kiss A Woman's Breast
60% (114)
How To Kiss A Woman's Breast
14 pages
100 Questions To Ask Your Partner
80% (35)
100 Questions To Ask Your Partner
2 pages
The 36 Questions That Lead To Love - The New York Times
94% (34)
The 36 Questions That Lead To Love - The New York Times
3 pages
Satanic Calendar
25% (56)
Satanic Calendar
4 pages
The 36 Questions That Lead To Love - The New York Times
95% (21)
The 36 Questions That Lead To Love - The New York Times
3 pages
Jeffrey Epstein39s Little Black Book Unredacted PDF
75% (12)
Jeffrey Epstein39s Little Black Book Unredacted PDF
95 pages
14 Easiest & Hardest Muscles To Build (Ranked With Solutions)
100% (7)
14 Easiest & Hardest Muscles To Build (Ranked With Solutions)
27 pages
1001 Songs
70% (71)
1001 Songs
1,798 pages
The 4 Hour Workweek, Expanded and Updated by Timothy Ferriss - Excerpt
23% (954)
The 4 Hour Workweek, Expanded and Updated by Timothy Ferriss - Excerpt
38 pages
Zodiac Sign & Their Most Common Addictions
63% (30)
Zodiac Sign & Their Most Common Addictions
9 pages
SoC Concepts and Questions
No ratings yet
SoC Concepts and Questions
41 pages
Penetration Test Report: Example Organization
No ratings yet
Penetration Test Report: Example Organization
17 pages
Penetration Testing Procedure Ambersail Sample
No ratings yet
Penetration Testing Procedure Ambersail Sample
8 pages
Web Application Security Audit Report
100% (1)
Web Application Security Audit Report
23 pages
Penetration Test Report
100% (1)
Penetration Test Report
12 pages
Planning For Information Security Testing - Joa - Eng - 0916
No ratings yet
Planning For Information Security Testing - Joa - Eng - 0916
10 pages
Vulnerability Assessment and Penetration Testing
No ratings yet
Vulnerability Assessment and Penetration Testing
48 pages
Pentestreport Romio
No ratings yet
Pentestreport Romio
72 pages
IPD - Malware Response
No ratings yet
IPD - Malware Response
28 pages
4 Penetration Testing Proposal (Contract:Scope of Work (SoW) )
No ratings yet
4 Penetration Testing Proposal (Contract:Scope of Work (SoW) )
1 page
A Complete Guide To Penetration Testing
100% (1)
A Complete Guide To Penetration Testing
4 pages
Va PT Report
No ratings yet
Va PT Report
16 pages
Sample Network Vulnerability Assessment Report: Sales@purplesec - Us
No ratings yet
Sample Network Vulnerability Assessment Report: Sales@purplesec - Us
5 pages
Penetration Testing
No ratings yet
Penetration Testing
21 pages
A Penetration Test
No ratings yet
A Penetration Test
7 pages
Pentesting Report
100% (2)
Pentesting Report
3 pages
CEH IT Security Penetration Testing Step
67% (3)
CEH IT Security Penetration Testing Step
42 pages
Vulnerability and Penetration Testing
No ratings yet
Vulnerability and Penetration Testing
30 pages
Vulnerability Management
No ratings yet
Vulnerability Management
6 pages
Penetration Testing
No ratings yet
Penetration Testing
3 pages
Active Directory Penetration Testing Procedure
No ratings yet
Active Directory Penetration Testing Procedure
2 pages
CISSP-Identity and Access Management
No ratings yet
CISSP-Identity and Access Management
4 pages
TYCS SEM - 6 P - 5 ETHICAL HACKING UNIT - 1 Introduction To Information Security
100% (1)
TYCS SEM - 6 P - 5 ETHICAL HACKING UNIT - 1 Introduction To Information Security
11 pages
Cyber Security Threats 2017: Cloudnexus and First Resource Insurance Group February 2017
No ratings yet
Cyber Security Threats 2017: Cloudnexus and First Resource Insurance Group February 2017
23 pages
VAPT Questions
No ratings yet
VAPT Questions
46 pages
Ransomware Executive One-Pager and Technical Document-FINAL PDF
No ratings yet
Ransomware Executive One-Pager and Technical Document-FINAL PDF
10 pages
Top Penetration Testing Software & Tools
No ratings yet
Top Penetration Testing Software & Tools
4 pages
Sample Penetration Testing Report Template
100% (1)
Sample Penetration Testing Report Template
37 pages
Detection of Phishing Attacks Nakul Arya
No ratings yet
Detection of Phishing Attacks Nakul Arya
10 pages
My Intern
No ratings yet
My Intern
22 pages
Windows Security Event Logs Cheatsheet
No ratings yet
Windows Security Event Logs Cheatsheet
8 pages
Web Application Pentesting
No ratings yet
Web Application Pentesting
6 pages
Network & Information Security Training
100% (1)
Network & Information Security Training
58 pages
What Is Data Privacy
No ratings yet
What Is Data Privacy
7 pages
Web Engineering: Assignment No 3: Firewall
No ratings yet
Web Engineering: Assignment No 3: Firewall
9 pages
Security Qa Checklist
100% (1)
Security Qa Checklist
4 pages
Pen-Testing-Whitepaper - eLearnSecurity PDF
No ratings yet
Pen-Testing-Whitepaper - eLearnSecurity PDF
9 pages
© 2018 Caendra Inc. - Hera For Waptv3 - Other Attacks
No ratings yet
© 2018 Caendra Inc. - Hera For Waptv3 - Other Attacks
6 pages
CISO Proposal 23dec2015
No ratings yet
CISO Proposal 23dec2015
7 pages
Ec Council Certified Security Analyst Ecsa v8
No ratings yet
Ec Council Certified Security Analyst Ecsa v8
5 pages
Pen Testing Whitepaper
No ratings yet
Pen Testing Whitepaper
9 pages
Lec 4 - Threats and Attacks
No ratings yet
Lec 4 - Threats and Attacks
51 pages
Vulnerability Assessment Sample Report
No ratings yet
Vulnerability Assessment Sample Report
120 pages
Implementation of Penetration Testing
100% (1)
Implementation of Penetration Testing
53 pages
Webserver Checklist Pentest
No ratings yet
Webserver Checklist Pentest
5 pages
Capability Maturity Model (CMM) & It's Levels in Software Engineering
No ratings yet
Capability Maturity Model (CMM) & It's Levels in Software Engineering
11 pages
Activity 1.4.5: Identifying Top Security Vulnerabilities
100% (1)
Activity 1.4.5: Identifying Top Security Vulnerabilities
4 pages
Navigating The Maze of Cyber Security Intelligence and Analytics - Anything Connected
No ratings yet
Navigating The Maze of Cyber Security Intelligence and Analytics - Anything Connected
23 pages
FOR One API Security Testing Training For Bug Hunters and InfoSec
No ratings yet
FOR One API Security Testing Training For Bug Hunters and InfoSec
7 pages
Windows Security Event IDs
0% (1)
Windows Security Event IDs
215 pages
Seven Steps To Creating An Effective Computer Security Incident Response Team
100% (1)
Seven Steps To Creating An Effective Computer Security Incident Response Team
8 pages
Firewall Audit Work Program
No ratings yet
Firewall Audit Work Program
38 pages
Secure Coding Practices For: White Paper
No ratings yet
Secure Coding Practices For: White Paper
15 pages
Itec413 15
100% (1)
Itec413 15
33 pages
Malware Analysis
No ratings yet
Malware Analysis
5 pages
Penetration Testing Report Rhs5dn
100% (1)
Penetration Testing Report Rhs5dn
3 pages
What Is A Security Operations Center (SOC) ?
No ratings yet
What Is A Security Operations Center (SOC) ?
3 pages
Continuity of Operations The Ultimate Step-By-Step Guide
From Everand
Continuity of Operations The Ultimate Step-By-Step Guide
Gerardus Blokdyk
No ratings yet
Cybersecurity Center A Complete Guide - 2020 Edition
From Everand
Cybersecurity Center A Complete Guide - 2020 Edition
Gerardus Blokdyk
No ratings yet
Network Security Complete Self-Assessment Guide
From Everand
Network Security Complete Self-Assessment Guide
Gerardus Blokdyk
No ratings yet

Penetration Testing Report

Uploaded by

Penetration Testing Report

Uploaded by

Writing penetration testing |1

Penetration Testing Report

Black Box Penetration Testing

2015 Universitas Bakrie As part of the Information Security Reading Room

Author regains full rights

Writing penetration testing |2

Black box penetration testing report

I Gusti Nyoman Mantra

I Gusti Nyoman Mantra

January 15th 2015

2015 Universitas Bakrie As part of the Information Security Reading Room

Author regains full rights

Writing penetration testing |3

Rincian Temuan .................................................................................................................... 9

2015 Universitas Bakrie As part of the Information Security Reading Room

Author regains full rights

Writing penetration testing |4

2015 Universitas Bakrie As part of the Information Security Reading Room

Author regains full rights

Writing penetration testing |5

1.1 Lingkup Pekerjaan

1.2 Tujuan Projek

1.4 Batas Waktu

Tabel 1 Penetration Testing Timeline

2015 Universitas Bakrie As part of the Information Security Reading Room

Author regains full rights

Writing penetration testing |6

1.5 Ringkasan Temuan

Tabel 2 Total Risk Rating

Gambar 1 Total Risks

Mengakses database atau sumber data yang lainnya, tergantung tingkat

2015 Universitas Bakrie As part of the Information Security Reading Room

Author regains full rights

Writing penetration testing |7

memungkinan untuk membaca, memperbarui atau bahkan menghapus

Mendapatkan akses password untuk mekanisme administratif seperti

Mengembangkan serangan lebih lanjut dengan meneliti source code untuk

1.6 Ringkasan Rekomendasi

keberagaman alat/sistem keamanan untuk melindungi asset dan informasi.

Pastikan bahwa semua keamanan servernya sudah diterapkan.

2015 Universitas Bakrie As part of the Information Security Reading Room

Author regains full rights

Writing penetration testing |8

Gambar 2 Metodologi Penetration Testing

Orang-orang dan budaya

2015 Universitas Bakrie As part of the Information Security Reading Room

Author regains full rights

Writing penetration testing |9

Tabel 3 Risk Analysis

2015 Universitas Bakrie As part of the Information Security Reading Room

Author regains full rights

Gambar 3 Telnet Service Banner

2015 Universitas Bakrie As part of the Information Security Reading Room

Author regains full rights

You might also like