Διαδικασία δοκιμής διείσδυσης σε αδιαφανή περιβάλλοντα
Penetration testing process in opaque environments
View/
Keywords
Δοκιμές διείσδυσης ; Κόκκινη ομάδα ; Αξιολόγηση μαύρου κουτιού ; Κυβερνοασφάλεια ; Αδιαφανή συστήματα ; Εκμετάλλευση τρωτών σημείων ; Μηχανική ανθεκτικότητας ; Επιθετική ασφάλειαAbstract
This thesis examines the application of red team methodologies in opaque digital environments to evaluate system resilience through structured adversarial simulations. The objective is to demonstrate how controlled offensive operations can identify and exploit security weaknesses without prior knowledge of internal architectures, reflecting realistic attack conditions.
A comprehensive methodology was developed by integrating international frameworks such as PTES, OWASP WSTG, and NIST SP 800-115, ensuring methodological rigor and repeatability. The framework was implemented in a controlled laboratory setting targeting a representative web application. The assessment followed all major penetration testing stages, from reconnaissance and vulnerability discovery to exploitation and post-engagement documentation.
Testing revealed critical vulnerabilities, including authentication bypass, insecure file upload, and privilege escalation, resulting in complete system compromise. These results confirm the diagnostic value of black-box testing and its relevance for evaluating modern infrastructures.
By combining offensive testing with resilience engineering principles, this work offers a standardized and ethically grounded model for future security assessments of complex and high-value digital systems.
Department
Σχολή Τεχνολογιών Πληροφορικής και Επικοινωνιών. Τμήμα ΠληροφορικήςNumber of pages
50Language
GreekCollections
Except where otherwise noted, this item's license is described as
Αναφορά Δημιουργού-Μη Εμπορική Χρήση-Όχι Παράγωγα Έργα 3.0 Ελλάδα
Αναφορά Δημιουργού-Μη Εμπορική Χρήση-Όχι Παράγωγα Έργα 3.0 Ελλάδα