YOUR JOURNEY
总体进度
42
%
18 professional modules • 20+ simulated tools
CURRICULUM
学习模块
18 modules • Beginner to Advanced
PRACTICE ENVIRONMENT
交互式终端实验室
kali@pentest-forge:~
$
在下方输入渗透测试命令。尝试:nmap, whois, nikto, sqlmap
STRATEGIC PLANNING
Attack Path Mind Map
Plan your penetration test strategy. Drag nodes and connect attack vectors.
Drag nodes • Click to edit
BUILD & TEST
Tool Prototyping Lab
Design and simulate custom penetration testing tools and scripts.
Script Editor
Simulation Output
Results are simulated for educational purposes
KNOWLEDGE BASE
专业资源
必备工具
Nmap / MasscanRecon & Scanning
Metasploit / Cobalt StrikeExploitation
Burp Suite / ZAPWeb App Testing
Wireshark / tcpdumpTraffic Analysis
John / hashcatPassword Cracking
BloodHound / CrackMapExecActive Directory
Frida / MobSFMobile Security
Pacu / ScoutSuiteCloud Security
PTES 方法论
- 1. Pre-engagement Interactions
- 2. Intelligence Gathering
- 3. Threat Modeling
- 4. Vulnerability Analysis
- 5. Exploitation
- 6. Post-Exploitation
- 7. Reporting
Additional frameworks: OSSTMM, OWASP, NIST SP 800-115, MITRE ATT&CK
关键术语
CVE — Common Vulnerabilities and Exposures
RCE — Remote Code Execution
LFI/RFI — Local/Remote File Inclusion
XSS — Cross-Site Scripting
SQLi — SQL Injection
AD — Active Directory
C2 — Command & Control
TTPs — Tactics, Techniques & Procedures