Expert Metasploit Penetration Testing [Video]
Packt Video. Stream online or download for unrestricted offline use. Learn more
- New! Packt Video courses: practical screencast-based tutorials that show you how to get the job done. Bite sized chunks, hands on instructions, and powerful results.
- Step-by-step demonstration of the Metasploit framework using real-time examples, diagrams, and presentations for theoretical topics
- Includes a detailed understanding of the framework internals and how they work
- Covers all three phases of penetration testing in detail including additional tools, such as Armitage, Nmap, and Nessus
Video DetailsLanguage : English
Release Date : Friday, December 20, 2013
Course Length : 1 hour and 53 mins
ISBN : 1782163662
ISBN 13 : 9781782163664
Author(s) : Abhinav Singh
Topics and Technologies : Video, e-Learning, Open Source
Table of Contents
- Getting Started with Scanning [17:21 minutes]
- Scanning with Nmap
- More Nmap Scan Options
- Working with a Database to Store Scan Results
- Scanning with Auxiliary Modules
- Vulnerability Scanning with NeXpose
- Working with Metasploit Payloads and Encoders [12:38 minutes]
- Working with msfpayload
- Working with msfencode
- Generating Complex Payloads
- Setting Up Metasploit Exploit Modules and Reverse Handlers
- Penetration Testing Using an Executable and Reverse Handler
- Working with Exploit Modules [12:04 minutes]
- WinXP SP2 Vulnerability Assessment and Exploitation
- Binding Shells and Changing Payloads
- Understanding the Metasploit Directory Structure
- Penetration Testing on a Linux Machine
- Client-side Exploitation Using Metasploit [12:59 minutes]
- Client-side Exploitation Based on Internet Explorer
- Exploitation Module Based on Adobe Reader
- Exploitation and Pen-testing Based on a Java Applet
- Targeting the Microsoft File Format's Vulnerabilities for Penetration Testing
- Browser Autopwn
- Post-Exploitation with Meterpreter [15:09 minutes]
- Understanding Meterpreter
- Meterpreter System Commands
- Privilege Escalation Using Meterpreter
- Meterpreter File System Commands
- Meterpreter User Interface Commands
- Advanced Meterpreter [16:30 minutes]
- Passing the Hash
- Setting Up Persistent Connection using Meterpreter
- Meterpreter Networking Commands
- Working with Auxiliary Modules [13:43 minutes]
- Understanding the Module Directory Structure and Auxiliary Modules
- Working with Admin Auxiliary Modules
- Denial-of-service Auxiliary Modules
- Fuzzer Auxiliary Modules
- Post Exploitation Auxiliary Modules
- Working with Armitage [13:01 minutes]
- Getting Started with Armitage
- Understanding the Armitage GUI Interface
- Scanning with Armitage
- Launching Exploits against a Target Using Armitage
- Post Exploitation Using Armitage
"I found the video to be pretty useful for those looking to learn how to use Metasploit. This series is useful for people looking to gain a hands on understanding of Metasploit as well as understanding how to perform basic penetration testing exercises." - Joey Muniz "You need this tutorial if you are a network admin and are expected to keep up with security on the network, or if you are a penetration tester helping to keep cyberspace safer. This is a good addition to your video library." - Wolf Halton
"I found the video to be pretty useful for those looking to learn how to use Metasploit. This series is useful for people looking to gain a hands on understanding of Metasploit as well as understanding how to perform basic penetration testing exercises." - Joey Muniz
"You need this tutorial if you are a network admin and are expected to keep up with security on the network, or if you are a penetration tester helping to keep cyberspace safer. This is a good addition to your video library." - Wolf Halton
Sorry, there are currently no downloads available for this video.
Support, complaints and feedback.
Packt is committed to making Packt Video courses a valuable, useful way for IT professionals to learn new skills. We have made every effort to ensure that this course reaches the required standard and will work on our customer's devices. Please go to our support page.
What you will learn from this video course
- Use scanning targets and networks for open ports and services
- Gathering information about the target
- Use Metasploit to launch remote exploits
- Attack the target by using client-side exploits in popular applications like browsers
- Explore the target in the post-exploitation phase
- Use the powers of Meterpreter
- Work with Auxiliary modules
- Operate with Armitage
Who this video course is for
"Expert Metasploit Penetration Testing" is for both beginners as well as experienced security professionals who are willing to dive deep into the world of Metasploit.
If penetration testing is a battle then Metasploit is the deadliest and stealthiest weapon to use. Metasploit is a free, open source penetration testing framework started by H. D. Moore in 2003, which was later acquired by Rapid7. It is based on a modular architecture and all its modules and scripts are integrated with the framework in the form of modules. This makes it fairly easy to integrate any new custom module with the framework and leverage its functionalities. Metasploit is a feature-rich tool that can be integrated with third party tools easily. It is fast, robust, and extensible, and has the ability to manage multiple targets at a time.
"Expert Metasploit Penetration Testing" is a complete guide for beginners as well as security professionals who are willing to master the most popular and buzzing framework for pen-testing. The video series will guide you through numerous techniques using real time demonstrations to sharpen your skills and give you a clear understanding of the complete framework. The video series also explains ad-on tools, such as nmap, Armitage, and so on, that can further add more skill sets in your techniques for penetration testing. Overall the video series covers every nook and corner of Metasploit.
The "Expert Metasploit Penetration Testing" video series starts with the information-gathering phase and advances to complex topics that include the exploitation of targets using remote and client-side attacks, using meterpreter, pivoting, auxiliary modules, and much more. The final section of the series covers Armitage, a GUI-based tool, built over the Metasploit framework.
The video series starts with scanning for vulnerabilities in the target/network, building standalone payloads using msfencode, exploiting operating systems and then moves ahead with client-side exploitation techniques, the Auxiliary module, and so on. In the post-exploitation phase, it covers persistence, the meterpreter, and pivoting. The final section deals with Armitage and explains how it can be used to leverage the powers of Metasploit over a GUI interface.
"Expert Metasploit Penetration Testing" is a quick and comprehensive guide for people who are willing to learn by doing.
"Expert Metasploit Penetration Testing" is a complete guide for beginners as well as security professionals who are willing to master the most popular and buzzing framework for pen-testing. The video series will guide you through numerous techniques using real-time demonstrations to sharpen your skills and give you a clear understanding of the complete framework. The video series also explains add-on tools, such as nmap, Armitage, and so on, that can add more penetration testing techniques to your skillset. Overall, the video series covers every aspect of Metasploit.
Packt video courses are designed to cover the breadth of the topic in short, hands-on, task-based videos. Each course is divided into short manageable sections, so you can watch the whole thing or jump to the bit you need. The focus is on practical instructions and screencasts showing you how to get the job done.
The course is structured in a step-by-step manner with very useful and real-world examples for the viewers to learn and follow without any difficulty.