Penetration Testing: A Survival Guide

A complete pentesting guide facilitating smooth backtracking for working hackers
Preview in Mapt

Penetration Testing: A Survival Guide

Wolf Halton et al.

1 customer reviews
A complete pentesting guide facilitating smooth backtracking for working hackers

Quick links: > What will you learn?> Table of content> Product reviews

Mapt Subscription
FREE
$29.99/m after trial
eBook
$49.00
RRP $69.99
Save 29%
What do I get with a Mapt Pro subscription?
  • Unlimited access to all Packt’s 5,000+ eBooks and Videos
  • Early Access content, Progress Tracking, and Assessments
  • 1 Free eBook or Video to download and keep every month after trial
What do I get with an eBook?
  • Download this book in EPUB, PDF, MOBI formats
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
What do I get with Print & eBook?
  • Get a paperback copy of the book delivered to you
  • Download this book in EPUB, PDF, MOBI formats
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
What do I get with a Video?
  • Download this Video course in MP4 format
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
$0.00
$49.00
$29.99 p/m after trial
RRP $69.99
Subscription
eBook
Start 14 Day Trial

Frequently bought together


Penetration Testing: A Survival Guide Book Cover
Penetration Testing: A Survival Guide
$ 69.99
$ 49.00
Penetration Testing Bootcamp Book Cover
Penetration Testing Bootcamp
$ 35.99
$ 25.20
Buy 2 for $35.00
Save $70.98
Add to Cart

Book Details

ISBN 139781787287839
Paperback1045 pages

Book Description

The need for penetration testers has grown well over what the IT industry ever anticipated. Running just a vulnerability scanner is no longer an effective method to determine whether a business is truly secure. This learning path will help you develop the most effective penetration testing skills to protect your Windows, web applications, and Android devices.

The first module focuses on the Windows platform, which is one of the most common OSes, and managing its security spawned the discipline of IT security. Kali Linux is the premier platform for testing and maintaining Windows security. Employs the most advanced tools and techniques to reproduce the methods used by sophisticated hackers. In this module first,you’ll be introduced to Kali's top ten tools and other useful reporting tools. Then, you will find your way around your target network and determine known vulnerabilities so you can exploit a system remotely. You’ll not only learn to penetrate in the machine, but will also learn to work with Windows privilege escalations.
The second module will help you get to grips with the tools used in Kali Linux 2.0 that relate to web application hacking. You will get to know about scripting and input validation flaws, AJAX, and security issues related to AJAX. You will also use an automated technique called fuzzing so you can identify flaws in a web application. Finally, you’ll understand the web application vulnerabilities and the ways they can be exploited.

In the last module, you’ll get started with Android security. Android, being the platform with the largest consumer base, is the obvious primary target for attackers. You’ll begin this journey with the absolute basics and will then slowly gear up to the concepts of Android rooting, application security assessments, malware, infecting APK files, and fuzzing. You’ll gain the skills necessary to perform Android application vulnerability assessments and to create an Android pentesting lab.

This Learning Path is a blend of content from the following Packt products:

  • Kali Linux 2: Windows Penetration Testing by Wolf Halton and Bo Weaver
  • Web Penetration Testing with Kali Linux, Second Edition by Juned Ahmed Ansari
  • Hacking Android by Srinivasa Rao Kotipalli and Mohammed A. Imran

Table of Contents

Chapter 1: Sharpening the Saw
Installing Kali Linux to an encrypted USB drive
Running Kali from the live CD
Installing and configuring applications
Setting up and configuring OpenVAS
Reporting the tests
Running services on Kali Linux
Exploring the Kali Linux Top 10 and more
Summary
Chapter 2: Information Gathering and Vulnerability Assessment
Footprinting the network
Where can you find instructions on this thing?
A return to OpenVAS
Using Maltego
Using Unicorn-Scan
Monitoring resource use with Htop
Monkeying around the network
Summary
Chapter 3: Exploitation Tools (Pwnage)
Choosing the appropriate time and tool
Choosing the right version of Metasploit
Starting Metasploit
Creating workspaces to organize your attack
Using the hosts and services commands
Using advanced footprinting
Using the pivot
Creating the attack path
Summary
Chapter 4: Web Application Exploitation
Surveying the webscape
Arm yourself with Armitage
Zinging Windows servers with OWASP ZAP
Search and destroy with Burp Suite
Summary
Chapter 5: Sniffing and Spoofing
Sniffing and spoofing network traffic
Sniffing network traffic
Spoofing network traffic
Summary
Chapter 6: Password Attacks
Password attack planning
My friend Johnny
John the Ripper (command line)
xHydra
Adding a tool to the main menu in Kali 2.x
Summary
Chapter 7: Windows Privilege Escalation
Gaining access with Metasploit
Replacing the executable
Local privilege escalation with a standalone tool
Escalating privileges with physical access
Weaseling in with Weevely
Summary
Chapter 8: Maintaining Remote Access
Maintaining access
Maintaining access with Ncat
The Dropbox
Cracking the NAC (Network Access Controller)
Creating a Spear-Phishing Attack with the Social Engineering Toolkit
Using Backdoor-Factory to Evade Antivirus
Summary
Chapter 9: Reverse Engineering and Stress Testing
Setting up a test environment
Reverse engineering theory
Working with Boolean logic
Practicing reverse engineering
Stresstesting Windows
Summary
Chapter 10: Forensics
Getting into Digital Forensics
Exploring Guymager
Diving into Autopsy
Mounting image files
Summary
Chapter 11: Introduction to Penetration Testing and Web Applications
Proactive security testing
Rules of engagement
The limitations of penetration testing
The need for testing web applications
Social engineering attacks
A web application overview for penetration testers
Summary
Chapter 12: Setting up Your Lab with Kali Linux
Kali Linux
Important tools in Kali Linux
Using Tor for penetration testing
Summary
Chapter 13: Reconnaissance and Profiling the Web Server
Reconnaissance
Scanning – probing the target
Summary
Chapter 14: Major Flaws in Web Applications
Information leakage
Authentication issues
Path traversal
Injection-based flaws
Cross-site scripting
Cross-site request forgery
Session-based flaws
File inclusion vulnerability
HTTP parameter pollution
HTTP response splitting
Summary
Chapter 15: Attacking the Server Using Injection-based Flaws
Command injection
SQL injection
Summary
Chapter 16: Exploiting Clients Using XSS and CSRF Flaws
The origin of cross-site scripting
An overview of cross-site scripting
Types of cross-site scripting
XSS and JavaScript – a deadly combination
Scanning for XSS flaws
Cross-site request forgery
Summary
Chapter 17: Attacking SSL-based Websites
Secure socket layer
Summary
Chapter 18: Exploiting the Client Using Attack Frameworks
Social engineering attacks
Social engineering toolkit
Spear-phishing attack
Website attack
Browser exploitation framework
Summary
Chapter 19: AJAX and Web Services – Security Issues
Introduction to AJAX
Web services
Summary
Chapter 20: Fuzzing Web Applications
Fuzzing basics
Types of fuzzing techniques
Summary
Chapter 21: Setting Up the Lab
Installing the required tools
Android Studio
Setting up an AVD
Configuring the AVD
ADB Primer
Summary
Chapter 22: Android Rooting
What is rooting?
Locked and unlocked boot loaders
Stock recovery and Custom recovery
Rooting Process and Custom ROM installation
Rooting a Samsung Note 2
Flashing the Custom ROM to the phone
Summary
Chapter 23: Fundamental Building Blocks of Android Apps
Basics of Android apps
Android app components
Building DEX files from the command line
What happens when an app is run?
Understanding app sandboxing
Summary
Chapter 24: Overview of Attacking Android Apps
Introduction to Android apps
Understanding the app's attack surface
Threats at the client side
Threats at the backend
Guidelines for testing and securing mobile apps
Automated tools
Identifying the attack surface
QARK (Quick Android Review Kit)
Summary
Chapter 25: Data Storage and Its Security
What is data storage?
Shared preferences
SQLite databases
Internal storage
External storage
User dictionary cache
Insecure data storage – NoSQL database
Backup techniques
Being safe
Summary
Chapter 26: Server-Side Attacks
Different types of mobile apps and their threat model
Mobile applications server-side attack surface
Strategies for testing mobile backend
Summary
Chapter 27: Client-Side Attacks – Static Analysis Techniques
Attacking application components
Static analysis using QARK:
Summary
Chapter 28: Client-Side Attacks – Dynamic Analysis Techniques
Automated Android app assessments using Drozer
Introduction to Cydia Substrate
Runtime monitoring and analysis using Introspy
Hooking using Xposed framework
Dynamic instrumentation using Frida
Logging based vulnerabilities
WebView attacks
Summary
Chapter 29: Android Malware
What do Android malwares do?
Writing Android malwares
Registering permissions
Malware analysis
Tools for automated analysis
Summary
Chapter 30: Attacks on Android Devices
MitM attacks
Dangers with apps that provide network level access
Using existing exploits
Malware
Bypassing screen locks
Pulling data from the sdcard
Summary

What You Will Learn

  • Exploit several common Windows network vulnerabilities
  • Recover lost files, investigate successful hacks, and discover hidden data in innocent-looking files
  • Expose vulnerabilities present in web servers and their applications using server-side attacks
  • Use SQL and cross-site scripting (XSS) attacks
  • Check for XSS flaws using the burp suite proxy
  • Acquaint yourself with the fundamental building blocks of Android Apps in the right way
  • Take a look at how your personal data can be stolen by malicious attackers
  • See how developers make mistakes that allow attackers to steal data from phones

Authors

Table of Contents

Chapter 1: Sharpening the Saw
Installing Kali Linux to an encrypted USB drive
Running Kali from the live CD
Installing and configuring applications
Setting up and configuring OpenVAS
Reporting the tests
Running services on Kali Linux
Exploring the Kali Linux Top 10 and more
Summary
Chapter 2: Information Gathering and Vulnerability Assessment
Footprinting the network
Where can you find instructions on this thing?
A return to OpenVAS
Using Maltego
Using Unicorn-Scan
Monitoring resource use with Htop
Monkeying around the network
Summary
Chapter 3: Exploitation Tools (Pwnage)
Choosing the appropriate time and tool
Choosing the right version of Metasploit
Starting Metasploit
Creating workspaces to organize your attack
Using the hosts and services commands
Using advanced footprinting
Using the pivot
Creating the attack path
Summary
Chapter 4: Web Application Exploitation
Surveying the webscape
Arm yourself with Armitage
Zinging Windows servers with OWASP ZAP
Search and destroy with Burp Suite
Summary
Chapter 5: Sniffing and Spoofing
Sniffing and spoofing network traffic
Sniffing network traffic
Spoofing network traffic
Summary
Chapter 6: Password Attacks
Password attack planning
My friend Johnny
John the Ripper (command line)
xHydra
Adding a tool to the main menu in Kali 2.x
Summary
Chapter 7: Windows Privilege Escalation
Gaining access with Metasploit
Replacing the executable
Local privilege escalation with a standalone tool
Escalating privileges with physical access
Weaseling in with Weevely
Summary
Chapter 8: Maintaining Remote Access
Maintaining access
Maintaining access with Ncat
The Dropbox
Cracking the NAC (Network Access Controller)
Creating a Spear-Phishing Attack with the Social Engineering Toolkit
Using Backdoor-Factory to Evade Antivirus
Summary
Chapter 9: Reverse Engineering and Stress Testing
Setting up a test environment
Reverse engineering theory
Working with Boolean logic
Practicing reverse engineering
Stresstesting Windows
Summary
Chapter 10: Forensics
Getting into Digital Forensics
Exploring Guymager
Diving into Autopsy
Mounting image files
Summary
Chapter 11: Introduction to Penetration Testing and Web Applications
Proactive security testing
Rules of engagement
The limitations of penetration testing
The need for testing web applications
Social engineering attacks
A web application overview for penetration testers
Summary
Chapter 12: Setting up Your Lab with Kali Linux
Kali Linux
Important tools in Kali Linux
Using Tor for penetration testing
Summary
Chapter 13: Reconnaissance and Profiling the Web Server
Reconnaissance
Scanning – probing the target
Summary
Chapter 14: Major Flaws in Web Applications
Information leakage
Authentication issues
Path traversal
Injection-based flaws
Cross-site scripting
Cross-site request forgery
Session-based flaws
File inclusion vulnerability
HTTP parameter pollution
HTTP response splitting
Summary
Chapter 15: Attacking the Server Using Injection-based Flaws
Command injection
SQL injection
Summary
Chapter 16: Exploiting Clients Using XSS and CSRF Flaws
The origin of cross-site scripting
An overview of cross-site scripting
Types of cross-site scripting
XSS and JavaScript – a deadly combination
Scanning for XSS flaws
Cross-site request forgery
Summary
Chapter 17: Attacking SSL-based Websites
Secure socket layer
Summary
Chapter 18: Exploiting the Client Using Attack Frameworks
Social engineering attacks
Social engineering toolkit
Spear-phishing attack
Website attack
Browser exploitation framework
Summary
Chapter 19: AJAX and Web Services – Security Issues
Introduction to AJAX
Web services
Summary
Chapter 20: Fuzzing Web Applications
Fuzzing basics
Types of fuzzing techniques
Summary
Chapter 21: Setting Up the Lab
Installing the required tools
Android Studio
Setting up an AVD
Configuring the AVD
ADB Primer
Summary
Chapter 22: Android Rooting
What is rooting?
Locked and unlocked boot loaders
Stock recovery and Custom recovery
Rooting Process and Custom ROM installation
Rooting a Samsung Note 2
Flashing the Custom ROM to the phone
Summary
Chapter 23: Fundamental Building Blocks of Android Apps
Basics of Android apps
Android app components
Building DEX files from the command line
What happens when an app is run?
Understanding app sandboxing
Summary
Chapter 24: Overview of Attacking Android Apps
Introduction to Android apps
Understanding the app's attack surface
Threats at the client side
Threats at the backend
Guidelines for testing and securing mobile apps
Automated tools
Identifying the attack surface
QARK (Quick Android Review Kit)
Summary
Chapter 25: Data Storage and Its Security
What is data storage?
Shared preferences
SQLite databases
Internal storage
External storage
User dictionary cache
Insecure data storage – NoSQL database
Backup techniques
Being safe
Summary
Chapter 26: Server-Side Attacks
Different types of mobile apps and their threat model
Mobile applications server-side attack surface
Strategies for testing mobile backend
Summary
Chapter 27: Client-Side Attacks – Static Analysis Techniques
Attacking application components
Static analysis using QARK:
Summary
Chapter 28: Client-Side Attacks – Dynamic Analysis Techniques
Automated Android app assessments using Drozer
Introduction to Cydia Substrate
Runtime monitoring and analysis using Introspy
Hooking using Xposed framework
Dynamic instrumentation using Frida
Logging based vulnerabilities
WebView attacks
Summary
Chapter 29: Android Malware
What do Android malwares do?
Writing Android malwares
Registering permissions
Malware analysis
Tools for automated analysis
Summary
Chapter 30: Attacks on Android Devices
MitM attacks
Dangers with apps that provide network level access
Using existing exploits
Malware
Bypassing screen locks
Pulling data from the sdcard
Summary

Book Details

ISBN 139781787287839
Paperback1045 pages
Read More
From 1 reviews

Read More Reviews

Recommended for You

Penetration Testing Bootcamp Book Cover
Penetration Testing Bootcamp
$ 35.99
$ 25.20
Kali Linux Network Scanning Cookbook - Second Edition Book Cover
Kali Linux Network Scanning Cookbook - Second Edition
$ 39.99
$ 28.00
Digital Forensics and Incident Response Book Cover
Digital Forensics and Incident Response
$ 35.99
$ 25.20
Python: End-to-end Data Analysis Book Cover
Python: End-to-end Data Analysis
$ 71.99
$ 50.40
Penetration Testing with the Bash shell Book Cover
Penetration Testing with the Bash shell
$ 13.99
$ 9.80
Linux: Powerful Server Administration Book Cover
Linux: Powerful Server Administration
$ 79.99
$ 56.00