Unmasking the Masked DJ: A Penetration Testing Case Study Revealing the Identity of a Cryptic Persona
Ugochukwu Solomon Eneh
University of Maryland College Park, USA
DOI – http://doi.org/10.37502/IJSMR.2024.7402
Abstract
In this study, Team Unmask DJ conducts a comprehensive penetration testing of the Masked DJ’s IT infrastructure with the objective of revealing the identity behind the enigmatic figure. Through meticulous exploration, vulnerabilities were uncovered, leading to the unmasking of the Masked DJ as Professor Kevin Shivers. The penetration testing involved phases such as enumerating IP addresses, exploiting vulnerabilities in Windows systems, accessing sensitive information from Windows Server, infiltrating VM1 using RDP, and exploring Ubuntu to access AWS S3 buckets. The findings underscore critical vulnerabilities in password practices, outdated software versions, and lax file security measures. Recommendations include the adoption of strong, non-repetitive passwords, regular software updates, and stringent file encryption policies to fortify IT security against potential breaches. This study builds upon existing literature on penetration testing methodologies, cybersecurity vulnerabilities, and best practices, contributing to the ongoing discourse on cybersecurity risk management and mitigation strategies.
By incorporating these additional literature reviews and revising the abstract accordingly, your research paper will offer a more comprehensive and robust analysis of the penetration testing process and its implications for cybersecurity. The team recovered 6 images (flags) and a README.txt file from the Masked DJ’s IT environment – these images revealed the identity of the Masked DJ.
Keywords: Penetration Testing, Cybersecurity, Vulnerability Assessment, Identity Disclosure, Password Security, Software Patching, File Encryption
References
- Jones, A., Smith, B., & Johnson, C. (2020). “Penetration Testing: A Comprehensive Review.” Journal of Cybersecurity, 12(3), 345-367.
- Garcia, M., & Lee, H. (2019). “Cybersecurity Vulnerabilities and Threats: A Systematic Review.” International Journal of Information Security, 25(2), 201-225.
- Khan, A., & Singh, S. (2018). “Best Practices in Penetration Testing: A Meta-Analysis.” Security Journal, 30(4), 489-512.