Metasploit
The Penetration Tester's Guide
(Sprache: Englisch)
How to identify and exploit security vulnerabilities with Metasploit, the world's most popular penetration testing framework.
- Metasploit is used by security professionals everywhere
- No competing titles for the current generation of Metasploit
-...
- Metasploit is used by security professionals everywhere
- No competing titles for the current generation of Metasploit
-...
Jetzt vorbestellen
versandkostenfrei
Buch (Kartoniert)
50.50 €
Produktdetails
Produktinformationen zu „Metasploit “
How to identify and exploit security vulnerabilities with Metasploit, the world's most popular penetration testing framework.
- Metasploit is used by security professionals everywhere
- No competing titles for the current generation of Metasploit
- Endorsed by Rapid7, the developers of Metasploit
- High-profile authors maintain popular online Metasploit tutorial
- Metasploit is used by security professionals everywhere
- No competing titles for the current generation of Metasploit
- Endorsed by Rapid7, the developers of Metasploit
- High-profile authors maintain popular online Metasploit tutorial
Klappentext zu „Metasploit “
The Metasploit Framework is a powerful suite of tools that security researchers use to investigate and resolve potential network and system vulnerabilities. "Metasploit: The Penetration Tester's Guide" shows readers how to assess networks by using Metasploit to launch simulated attacks that expose weaknesses in their security. The book begins with the basics of information security and Metasploit, then proceeds to general and advanced techniques for penetration testing, including network reconnaissance and enumeration, server- and client-side attacks, devastating wireless attacks, and even targeted social engineering attacks. Whether readers are looking to secure their own networks or discover holes in others', "Metasploit" is the definitive guide to penetration testing with this dynamic and flexible framework.
The Metasploit Framework makes discovering, exploiting, and sharing vulnerabilities quick and relatively painless. But while Metasploit is used by security professionals everywhere, the tool can be hard to grasp for first-time users. Metasploit: The Penetration Tester's Guide fills this gap by teaching you how to harness the Framework and interact with the vibrant community of Metasploit contributors.
Once you've built your foundation for penetration testing, you'll learn the Framework's conventions, interfaces, and module system as you launch simulated attacks. You'll move on to advanced penetration testing techniques, including network reconnaissance and enumeration, client-side attacks, wireless attacks, and targeted social-engineering attacks.
Learn how to:
- Find and exploit unmaintained, misconfigured, and unpatched systems
- Perform reconnaissance and find valuable information about your target
- Bypass antivirus technologies and circumvent security controls
- Integrate Nmap, NeXpose, and Nessus with Metasploit to automate discovery
- Use the Meterpreter shell to launch further attacks from inside the network
- Harness stand-alone Metasploit utilities, third-party tools, and plug-ins
- Learn how to write your own Meterpreter post-exploitation modules and scripts
You'll even touch on exploit discovery for zero-day research, write a fuzzer, port existing exploits into the Framework, and learn how to cover your tracks. Whether your goal is to secure your own networks or to put someone else's to the test, Metasploit: The Penetration Tester's Guide will take you there and beyond.ring attacks.
Learn how to:
- Find and exploit unmaintained, misconfigured, and unpatched systems
- Perform reconnaissance and find valuable information about your target
- Bypass antivirus tec
Once you've built your foundation for penetration testing, you'll learn the Framework's conventions, interfaces, and module system as you launch simulated attacks. You'll move on to advanced penetration testing techniques, including network reconnaissance and enumeration, client-side attacks, wireless attacks, and targeted social-engineering attacks.
Learn how to:
- Find and exploit unmaintained, misconfigured, and unpatched systems
- Perform reconnaissance and find valuable information about your target
- Bypass antivirus technologies and circumvent security controls
- Integrate Nmap, NeXpose, and Nessus with Metasploit to automate discovery
- Use the Meterpreter shell to launch further attacks from inside the network
- Harness stand-alone Metasploit utilities, third-party tools, and plug-ins
- Learn how to write your own Meterpreter post-exploitation modules and scripts
You'll even touch on exploit discovery for zero-day research, write a fuzzer, port existing exploits into the Framework, and learn how to cover your tracks. Whether your goal is to secure your own networks or to put someone else's to the test, Metasploit: The Penetration Tester's Guide will take you there and beyond.ring attacks.
Learn how to:
- Find and exploit unmaintained, misconfigured, and unpatched systems
- Perform reconnaissance and find valuable information about your target
- Bypass antivirus tec
Inhaltsverzeichnis zu „Metasploit “
Chapter 1: The Absolute Basics of Penetration TestingChapter 2: Metasploit Basics
Chapter 3: Intelligence Gathering
Chapter 4: Vulnerability Scanning
Chapter 5: The Joy of Exploitation
Chapter 6: Meterpreter
Chapter 7: Avoiding Detection
Chapter 8: Exploitation Using Client-side Attacks
Chapter 9: Metasploit Auxiliary Modules
Chapter 10: The Social-Engineer Toolkit
Chapter 11: Fast-Track
Chapter 13: Building Your Own Module
Chapter 14: Creating Your Own Exploits
Chapter 15: Porting Exploits to the Metasploit Framework
Chapter 16: Meterpreter Scripting
Chapter 17: Simulated Penetration Test
Appendix A: Configuring Your Target Machines
Appendix B: Cheat Sheet
Autoren-Porträt von David Kennedy, Jim O'Gorman, Devon Kearns, Mati Ahoroni
David Kennedy is Chief Information Security Officer at Diebold Incorporated and creator of the Social-Engineer Toolkit (SET), Fast-Track, and other open source tools. He is on the Back|Track and Exploit-Database development team and is a core member of the Social-Engineer podcast and framework. Kennedy has presented at a number of security conferences including Black Hat, DEF CON, ShmooCon, Security B-Sides, and more. Jim O'Gorman (Elwood) is a professional penetration tester, an instructor at Offensive Security, and manages Offensive Security’s consulting services. Jim has lived online from the times of BBS’s, to FidoNet, to when SLIP connections were the new hotness. Jim spends time on network intrusion simulation, digital investigations, and malware analysis. When not working on various security issues, Jim spends his time assisting his children in their attempts to fight Zombie hordes.
Devon Kearns is an instructor at Offensive-Security, a Back|Track Linux developer, and administrator of The Exploit Database. He has contributed a number of Metasploit exploit modules and is the maintainer of the Metasploit Unleashed wiki.
Mati Aharoni is the creator of the Back|Track Linux distribution and founder of Offensive-Security, the industry leader in security training.
Bibliographische Angaben
- Autoren: David Kennedy , Jim O'Gorman , Devon Kearns , Mati Ahoroni
- 2050, 328 Seiten, mit Abbildungen, Maße: 17,9 x 23,3 cm, Kartoniert (TB), Englisch
- By David Kennedy, Jim O'Gorman, Devon Kearns et al.
- Verlag: No Starch Press
- ISBN-10: 159327288X
- ISBN-13: 9781593272883
Sprache:
Englisch
Kommentar zu "Metasploit"
0 Gebrauchte Artikel zu „Metasploit“
Zustand | Preis | Porto | Zahlung | Verkäufer | Rating |
---|
Schreiben Sie einen Kommentar zu "Metasploit".
Kommentar verfassen