Firewall Pentesting

Introduction

Firewall penetration testing is the process of locating, investigating, and penetrating a certain firewall to reach the internal trusted network of a certain system.

Methodology

There are 13 steps to firewall penetration testing, which include:

  1. Locating the firewall

  2. Conducting tracerroute

  3. Scanning ports

  4. Banner grabbing

  5. Access control enumeration

  6. Identifying the firewall architecture

  7. Testing the firewall policy

  8. Firewalking

  9. Port redirection

  10. Internal and external testing

  11. Testing for covert channels

  12. HTTP tunneling

  13. Identifying firewall specific vulnerabilities.

REFERENCES

Last updated