Penetration Testing with BackBox

This tutorial will immerse you in the fascinating environment of penetration testing. Thoroughly practical and written for ease of understanding, it will give you the insights and knowledge you need to start using BackBox.

Penetration Testing with BackBox

Starting
Stefan Umit Uygur

1 customer reviews
This tutorial will immerse you in the fascinating environment of penetration testing. Thoroughly practical and written for ease of understanding, it will give you the insights and knowledge you need to start using BackBox.
$17.99
$29.99
RRP $17.99
RRP $29.99
eBook
Print + eBook
$29.99 p/month

Find out more

Get Unlimited Access to every Packt eBook and Video course

Enjoy full and instant access to over 3000 books and videos – you’ll find everything you need to stay ahead of the curve and make sure you can always get the job done.

Code Files
+ Collection
Free Sample

Book Details

ISBN 139781783282975
Paperback130 pages

Book Description

BackBox is an amazing Linux security distribution designed to keep in mind the needs of security and system administration specialists. It has been developed to perform penetration tests and security assessments. Designed to be fast and easy to use while providing a minimal yet complete desktop environment, Backbox comes with its own software repositories and is continually updated to the latest stable version of the most widely used and best-known ethical hacking tools.

This book provides an exciting introduction to BackBox Linux in order give you familiarity with and understanding of this amazing Linux security distro, making you feel comfortable with both the subject of pen-testing and BackBox. The book progresses through topics based on standard cases of penetration testing from the initial steps to the final procedures.

This book will help you discover the exciting world of penetration testing through a series of step-by-step, practical lessons. Penetration Testing with BackBox is organized into eight chapters. Starting with an introduction to BackBox Linux in order to give you a solid grounding of this amazing Linux security distro, including both its design philosophy and feature set, before moving on to practical tutorials in using BackBox. The book is arranged in a chronological order based on standard cases of penetration testing. For those more experienced in the use of penetration testing tools, each chapter can be read independently, providing a detailed overview of how BackBox will augment your arsenal of tools at each step of the penetration testing process.

Throughout this book, you will be given a clear picture of IT security cases by having one of the most popular topics of penetration testing demonstrated in a user-friendly way. By the end of the book, you will have learned all the fundamental skills needed to use BackBox for ethical hacking.

Table of Contents

Chapter 1: Starting Out with BackBox Linux
A flexible penetration testing distribution
The organization of tools in BackBox
Services
Update
Anonymous
Extras
Completeness, accuracy, and support
Links and contacts
Summary
Chapter 2: Information Gathering
Starting with an unknown system
Proceeding with a known system
Summary
Chapter 3: Vulnerability Assessment and Management
Vulnerability scanning
False positives
Summary
Chapter 4: Exploitations
Exploitation of a SQL injection on a database
Exploiting web applications with W3af
Summary
Chapter 5: Eavesdropping and Privilege Escalation
Sniffing encrypted SSL/TLS traffic
Password cracking
Summary
Chapter 6: Maintaining Access
Backdoor Weevely
Summary
Chapter 7: Penetration Testing Methodologies with BackBox
Information gathering
Summary
Chapter 8: Documentation and Reporting
MagicTree – the auditing productivity tool
Summary

What You Will Learn

  • Perform reconnaissance and collect information about an unknown system
  • Perform vulnerability scanning, management, and assessment, as well as understand false positives
  • Understand how SQL injection attacks work and find injectable pages on a web server
  • Sniff the network to capture sensitive data and learn different methods of privilege escalation
  • Maintain permanent access on a target server once access is initially granted
  • Use exploitation tools like Metasploit to exploit the reported vulnerabilities
  • Learn how to document and generate reports from the entire auditing process

Authors

Table of Contents

Chapter 1: Starting Out with BackBox Linux
A flexible penetration testing distribution
The organization of tools in BackBox
Services
Update
Anonymous
Extras
Completeness, accuracy, and support
Links and contacts
Summary
Chapter 2: Information Gathering
Starting with an unknown system
Proceeding with a known system
Summary
Chapter 3: Vulnerability Assessment and Management
Vulnerability scanning
False positives
Summary
Chapter 4: Exploitations
Exploitation of a SQL injection on a database
Exploiting web applications with W3af
Summary
Chapter 5: Eavesdropping and Privilege Escalation
Sniffing encrypted SSL/TLS traffic
Password cracking
Summary
Chapter 6: Maintaining Access
Backdoor Weevely
Summary
Chapter 7: Penetration Testing Methodologies with BackBox
Information gathering
Summary
Chapter 8: Documentation and Reporting
MagicTree – the auditing productivity tool
Summary

Book Details

ISBN 139781783282975
Paperback130 pages
Read More
From 1 reviews

Read More Reviews