Free Sample
+ Collection
Code Files

Expert Metasploit Penetration Testing [Video]

Abhinav Singh

Enhance your knowledge of penetration testing using Metasploit
$34.00
RRP $39.99

Want this title & more?

$21.99 p/month

Subscribe to PacktLib

Enjoy full and instant access to over 2000 books and videos – you’ll find everything you need to stay ahead of the curve and make sure you can always get the job done.

Video Details

ISBN 139781782163664
Course Length1 hour and 53 mins

About This Video

  • Step-by-step demonstration of the Metasploit framework using real-time examples, diagrams, and presentations for theoretical topics
  • Includes a detailed understanding of the framework internals and how they work
  • Covers all three phases of penetration testing in detail including additional tools, such as Armitage, Nmap, and Nessus

Who This Video Is For

"Expert Metasploit Penetration Testing" is for both beginners as well as experienced security professionals who are willing to dive deep into the world of Metasploit.

Table of Contents

Getting Started with Scanning
Scanning with Nmap
More Nmap Scan Options
Working with a Database to Store Scan Results
Scanning with Auxiliary Modules
Vulnerability Scanning with NeXpose
Working with Metasploit Payloads and Encoders
Working with msfpayload
Working with msfencode
Generating Complex Payloads
Setting Up Metasploit Exploit Modules and Reverse Handlers
Penetration Testing Using an Executable and Reverse Handler
Working with Exploit Modules
WinXP SP2 Vulnerability Assessment and Exploitation
Binding Shells and Changing Payloads
Understanding the Metasploit Directory Structure
Penetration Testing on a Linux Machine
Client-side Exploitation Using Metasploit
Client-side Exploitation Based on Internet Explorer
Exploitation Module Based on Adobe Reader
Exploitation and Pen-testing Based on a Java Applet
Targeting the Microsoft File Format's Vulnerabilities for Penetration Testing
Browser Autopwn
Post-Exploitation with Meterpreter
Understanding Meterpreter
Meterpreter System Commands
Privilege Escalation Using Meterpreter
Meterpreter File System Commands
Meterpreter User Interface Commands
Advanced Meterpreter
Passing the Hash
Setting Up Persistent Connection Using Meterpreter
Meterpreter Networking Commands
Pivoting
Railgun
Working with Auxiliary Modules
Understanding the Module Directory Structure and Auxiliary Modules
Working with Admin Auxiliary Modules
Denial-of-service Auxiliary Modules
Fuzzer Auxiliary Modules
Post Exploitation Auxiliary Modules
Working with Armitage
Getting Started with Armitage
Understanding the Armitage GUI Interface
Scanning with Armitage
Launching Exploits against a Target Using Armitage
Post Exploitation Using Armitage

What You Will Learn

  • Use scanning targets and networks for open ports and services
  • Gathering information about the target
  • Use Metasploit to launch remote exploits
  • Attack the target by using client-side exploits in popular applications like browsers
  • Explore the target in the post-exploitation phase
  • Use the powers of Meterpreter
  • Work with Auxiliary modules
  • Operate with Armitage

In Detail

If penetration testing is a battle then Metasploit is the deadliest and stealthiest weapon to use. Metasploit is a free, open source penetration testing framework started by H. D. Moore in 2003, which was later acquired by Rapid7. It is based on a modular architecture and all its modules and scripts are integrated with the framework in the form of modules. This makes it fairly easy to integrate any new custom module with the framework and leverage its functionalities. Metasploit is a feature-rich tool that can be integrated with third party tools easily. It is fast, robust, and extensible, and has the ability to manage multiple targets at a time.

"Expert Metasploit Penetration Testing" is a complete guide for beginners as well as security professionals who are willing to master the most popular and buzzing framework for pen-testing. The video series will guide you through numerous techniques using real time demonstrations to sharpen your skills and give you a clear understanding of the complete framework. The video series also explains ad-on tools, such as nmap, Armitage, and so on, that can further add more skill sets in your techniques for penetration testing. Overall the video series covers every nook and corner of Metasploit.

The "Expert Metasploit Penetration Testing" video series starts with the information-gathering phase and advances to complex topics that include the exploitation of targets using remote and client-side attacks, using meterpreter, pivoting, auxiliary modules, and much more. The final section of the series covers Armitage, a GUI-based tool, built over the Metasploit framework.

The video series starts with scanning for vulnerabilities in the target/network, building standalone payloads using msfencode, exploiting operating systems and then moves ahead with client-side exploitation techniques, the Auxiliary module, and so on. In the post-exploitation phase, it covers persistence, the meterpreter, and pivoting. The final section deals with Armitage and explains how it can be used to leverage the powers of Metasploit over a GUI interface.

"Expert Metasploit Penetration Testing" is a quick and comprehensive guide for people who are willing to learn by doing.

"Expert Metasploit Penetration Testing" is a complete guide for beginners as well as security professionals who are willing to master the most popular and buzzing framework for pen-testing. The video series will guide you through numerous techniques using real-time demonstrations to sharpen your skills and give you a clear understanding of the complete framework. The video series also explains add-on tools, such as nmap, Armitage, and so on, that can add more penetration testing techniques to your skillset. Overall, the video series covers every aspect of Metasploit.

Authors

Screenshots

Read More