Dark Arts
  • index
  • BUY ME A BOOK
  • 🪄Dark Magic
    • Pentesting
      • Industry Methodologies
    • Scopes of Testing
    • Reconnaissance
      • Passive
        • WHOIS
        • DNS
          • nslookup
          • dig
        • WAF
        • Subdomain
        • Google Dork
        • Misc. Techniques
        • Leaked Passwords
      • Active
        • Browser & Plugins
        • ping & traceroute
        • fping
        • telnet & netcat
        • DNS
          • Zone Transfer
          • DNS Amplification DDoS Attack Breakdown
        • Misc. Techniques
    • Vulnerability Assessment
    • Attack Types
  • 🕷️Aragoogs Nest
    • Web Application Overview & Security
      • Security Testing
      • Common Threats & Risks
    • Web Application Architecture
      • Technologies
    • HTTP/S
      • Message
      • Request
      • Response
        • Status Code
    • Crawling/Spidering
  • 🧪Potions
    • Web Browsers
    • Computer Networking
      • Network Protocol
      • Packets
      • OSI Layer
        • Layer 3: Network
        • Layer 4: Transport
      • DNS
        • Primary-Secondary
        • Local Name Resolution
        • Domain Hierarchy
        • FQDN
        • Lookups
        • DNS Resolution
        • DNS Records
        • Security: Attack-Defense (Default)
  • 🎆Spells
    • 📜Linux Scroll
    • 📜WebShell Scroll
    • git
      • Attacks + Vulnerabilities
  • 🖼️Flaws w/ Magical Frameworks
    • Windows
      • In a Nutshell
      • CVE-2019-0708: BlueKeep
      • CVE-2017-0144: EternalBlue: MS17-010
      • Attacking Services
        • MS IIS - WebDAV
        • SMB
        • HTTP File Server (HFS)
        • Apache Tomcat Web Server
        • RDP
        • WinRM
      • File System Vulnerabilities
      • Credential Dumping
        • Password Search in Windows Configuration Files
        • Mimikatz
        • Pass-the-Hash Attack
    • Linux
      • In a Nutshell
      • CVE-2014-6271: Shellshock
      • Attacking Services
        • FTP
        • SSH
        • SAMBA
        • SMTP
        • RSYNC
      • Dumping Hashes
  • 🌼Marauder's Boost
    • Privilege Escalation
    • Windows PrivEsc
      • Windows Kernel Exploit
      • Bypassing UAC
      • Access Token Impersonation
    • Linux PrivEsc
      • Linux Kernel Exploit
      • Misconfigured Cron Jobs
      • Exploiting SUID Binaries
      • shells
      • File Permissions
  • ☠️Death Eaters
    • Post Exploitation
      • Windows
      • Linux
  • 🪄OLLIVANDERS
    • nmap
      • Host Discovery
      • Port Scan
      • Service & OS
      • NSE
      • Firewall/IDS Evasion
      • Scan Optimization
      • Misc. Methods
    • ffuf
    • Hydra
    • Metasploit Framework
      • Architecture
      • Must to Know
      • msfvenom
      • Auxiliary Modules
      • Service Enumeration
      • Vulnerability Scanning
      • Imports
      • Automating
    • Vulnerability Scanners
    • Wireshark
  • 🚂Platform 9(3/4)
    • Auth-Auth
      • Authentication
        • Password-based Authentication
        • Basic Authentication
        • Multi-factor Authentication
        • Access Token
        • Token-based Authentication
          • JWT
          • OAuth 2.0
    • Secure Headers
      • Content-Security-Policy (CSP)
    • Cryptography
      • Caesar Cipher
  • ⛲Port Pensieve
    • Enumeration
      • SMB & NetBIOS
      • SNMP
    • Wordlists
  • 🔆DUELS
    • Pivoting
    • SMB Relay Attack
  • 🗺️Marauder's Map
    • Web Application Pentesting
    • API Pentesting
      • GraphQL
        • Primer
    • Mobile Application Pentesting
  • 🎧SIDE CHANNEL
    • Side Channel Analysis
    • Timing Side-Channel Attacks
      • Vulnerable Login
  • 🥃Sky
    • Cloud Basics
    • Cloud Management
      • Shared Responsibility Model
    • Using Cloud Resources
      • Monitoring & Alerts
      • Identity & Access Management
      • Scalability & Availability
      • Solution Design
    • Cloud Providers
    • Cloud Security & Regulatory Compliance
      • Resource Protection
      • ICCA: Cloud Security & Regulatory Compliance
    • ICCA Preparation
      • Knowledge Tests
      • Lab
  • 🔷Obsidian
    • Pentest Engagement
      • Scoping
    • Pentest Ethics
      • Rules of Engagement
    • Auditing Fundamentals
      • Process/Lifecycle
      • Pentest & Security Auditing
      • GRC
      • Standards, Frameworks & Guidelines
      • From Audit to Pentest
  • 💢Threat Modeling
    • Why Threat Model?
  • 📡THREAT INTEL
    • Threat Intelligence
    • Tool Dump
  • 📱Anything-Mobile-IoT
    • Firmware
    • Firmware Analysis
      • Example: CVE-2016-1555
    • Firmware Installation/Flashing
  • 🎉Mischeif
    • Social Engineering
    • Phishing
      • GoPhish
    • Pretexting
Powered by GitBook
On this page
  • Planning and Preparation
  • Information Gathering
  • Risk Assessment
  • Audit Execution
  • Analysis and Evaluation
  • Reporting
  • Remediation
  • Example: Web Application Security Audit
  1. Obsidian
  2. Auditing Fundamentals

Process/Lifecycle

PreviousAuditing FundamentalsNextPentest & Security Auditing

Last updated 8 months ago

Planning and Preparation

In this initial phase, the audit's objectives and scope are defined. Relevant documentation like policies, procedures, and network diagrams are collected. The audit team is assembled, and a schedule is set for the audit activities.

Information Gathering

The organization's security policies and procedures are reviewed. Key personnel are interviewed to understand security practices, and technical information about system configurations, network architecture, and security controls is gathered.

Risk Assessment

Critical assets and potential threats are identified. Vulnerabilities are evaluated, and risk levels are assigned based on the likelihood and impact of identified threats.

Audit Execution

Technical assessments such as vulnerability scans, penetration tests, and configuration reviews are performed. Compliance with relevant regulations is verified, and the effectiveness of security controls is evaluated.

Analysis and Evaluation

The collected data is analyzed to identify weaknesses and areas for improvement. The organization’s security posture is compared against industry standards, and issues are prioritized based on severity and potential impact.

Reporting

A detailed report is created, outlining audit findings, including vulnerabilities and non-compliance issues. Actionable recommendations are provided, and the results are presented to relevant stakeholders.

Remediation

Remediation plans are developed and implemented to address the audit findings. Follow-up audits are scheduled to ensure that improvements are effective, and continuous monitoring is conducted to maintain a strong security posture.

Example: Web Application Security Audit

  1. Planning and Preparation: Define the audit's goal to assess the security of a web application handling sensitive customer data. Gather system architecture and past vulnerability reports.

  2. Information Gathering: Review application security policies, interview developers, and collect technical details, including server configurations and data flow diagrams.

  3. Risk Assessment: Identify key assets (e.g., customer database), potential threats (SQL Injection, XSS), and assess vulnerabilities like outdated libraries.

  4. Audit Execution: Perform vulnerability scans, code reviews, and penetration tests on the web application to identify exploitable issues.

  5. Analysis and Evaluation: Analyze findings, compare with OWASP Top 10 standards, and prioritize issues such as critical authentication bypass.

  6. Reporting: Create a report detailing the findings and suggested remediation steps, like implementing input validation and updating dependencies.

  7. Remediation: Work with developers to fix identified vulnerabilities, conduct follow-up testing, and ensure the application is secure before deployment.

🔷