Mastering Metasploit
Discover the next level of network defense with the Metasploit framework
2nd Edition
Published on 30. September 2016
Book
Paperback/Softback
440 pages
978-1-78646-316-6 (ISBN)
Description
Take your penetration testing and IT security skills to a whole new level with the secrets of Metasploit
Key Features
[*] Gain the skills to carry out penetration testing in complex and highly-secured environments
[*] Become a master using the Metasploit framework, develop exploits, and generate modules for a variety of real-world scenarios
[*] Get this completely updated edition with new useful methods and techniques to make your network robust and resilient
Book DescriptionMetasploit is a popular penetration testing framework that has one of the largest exploit databases around. This book will show you exactly how to prepare yourself against the attacks you will face every day by simulating real-world possibilities.
We start by reminding you about the basic functionalities of Metasploit and its use in the most traditional ways. You'll get to know about the basics of programming Metasploit modules as a refresher, and then dive into carrying out exploitation as well building and porting exploits of various kinds in Metasploit.
In the next section, you'll develop the ability to perform testing on various services such as SCADA, databases, IoT, mobile, tablets, and many more services. After this training, we jump into real-world sophisticated scenarios where performing penetration tests are a challenge. With real-life case studies, we take you on a journey through client-side attacks using Metasploit and various scripts built on the Metasploit framework.
By the end of the book, you will be trained specifically on time-saving techniques using Metasploit.
What you will learn
[*] Develop advanced and sophisticated auxiliary modules
[*] Port exploits from PERL, Python, and many more programming languages
[*] Test services such as databases, SCADA, and many more
[*] Attack the client side with highly advanced techniques
[*] Test mobile and tablet devices with Metasploit
[*] Perform social engineering with Metasploit
[*] Simulate attacks on web servers and systems with Armitage GUI
[*] Script attacks in Armitage using CORTANA scripting
Who this book is forThis book is a hands-on guide to penetration testing using Metasploit and covers its complete development. It shows a number of techniques and methodologies that will help you master the Metasploit framework and explore approaches to carrying out advanced penetration testing in highly secured environments.
Key Features
[*] Gain the skills to carry out penetration testing in complex and highly-secured environments
[*] Become a master using the Metasploit framework, develop exploits, and generate modules for a variety of real-world scenarios
[*] Get this completely updated edition with new useful methods and techniques to make your network robust and resilient
Book DescriptionMetasploit is a popular penetration testing framework that has one of the largest exploit databases around. This book will show you exactly how to prepare yourself against the attacks you will face every day by simulating real-world possibilities.
We start by reminding you about the basic functionalities of Metasploit and its use in the most traditional ways. You'll get to know about the basics of programming Metasploit modules as a refresher, and then dive into carrying out exploitation as well building and porting exploits of various kinds in Metasploit.
In the next section, you'll develop the ability to perform testing on various services such as SCADA, databases, IoT, mobile, tablets, and many more services. After this training, we jump into real-world sophisticated scenarios where performing penetration tests are a challenge. With real-life case studies, we take you on a journey through client-side attacks using Metasploit and various scripts built on the Metasploit framework.
By the end of the book, you will be trained specifically on time-saving techniques using Metasploit.
What you will learn
[*] Develop advanced and sophisticated auxiliary modules
[*] Port exploits from PERL, Python, and many more programming languages
[*] Test services such as databases, SCADA, and many more
[*] Attack the client side with highly advanced techniques
[*] Test mobile and tablet devices with Metasploit
[*] Perform social engineering with Metasploit
[*] Simulate attacks on web servers and systems with Armitage GUI
[*] Script attacks in Armitage using CORTANA scripting
Who this book is forThis book is a hands-on guide to penetration testing using Metasploit and covers its complete development. It shows a number of techniques and methodologies that will help you master the Metasploit framework and explore approaches to carrying out advanced penetration testing in highly secured environments.
More details
Edition
2nd Revised edition
Language
English
Place of publication
Birmingham
United Kingdom
Edition type
Revised edition
Dimensions
Height: 235 mm
Width: 191 mm
Thickness: 24 mm
Weight
816 gr
ISBN-13
978-1-78646-316-6 (9781786463166)
Copyright in bibliographic data and cover images is held by Nielsen Book Services Limited or by the publishers or by their respective licensors: all rights reserved.
Schweitzer Classification
Person
Nipun Jaswal is an international cybersecurity author and an award-winning IT security researcher with more than a decade of experience in penetration testing, Red Team assessments, vulnerability research, RF, and wireless hacking. He is presently the Director of Cybersecurity Practices at BDO India. Nipun has trained and worked with multiple law enforcement agencies on vulnerability research and exploit development. He has also authored numerous articles and exploits that can be found on popular security databases, such as PacketStorm and exploit-db. Please feel free to contact him at @nipunjaswal.
Content
Table of Contents
Approaching a Penetration Test Using Metasploit
Reinventing Metasploit
The Exploit Formulation Process
Porting Exploits
Offstage Access to Testing Services
Virtual Test Grounds and Staging
Client Side Exploitation
Metasploit Extended
Speeding Up Penetration Testing
Visualizing with Armitage
Approaching a Penetration Test Using Metasploit
Reinventing Metasploit
The Exploit Formulation Process
Porting Exploits
Offstage Access to Testing Services
Virtual Test Grounds and Staging
Client Side Exploitation
Metasploit Extended
Speeding Up Penetration Testing
Visualizing with Armitage