Advanced penetration testing for highly-secured environments /:
Employ the most advanced pentesting techniques and tools to build highly-secured systems and environmentsAbout This Book Learn how to build your own pentesting lab environment to practice advanced techniques Customize your own scripts, and learn methods to exploit 32-bit and 64-bit programs Explore...
Gespeichert in:
| Hauptverfasser: | , |
|---|---|
| Format: | Elektronisch E-Book |
| Sprache: | English |
| Veröffentlicht: |
Packt Publishing
2016.
|
| Ausgabe: | Second edition. |
| Schlagworte: | |
| Online-Zugang: | DE-862 DE-863 |
| Zusammenfassung: | Employ the most advanced pentesting techniques and tools to build highly-secured systems and environmentsAbout This Book Learn how to build your own pentesting lab environment to practice advanced techniques Customize your own scripts, and learn methods to exploit 32-bit and 64-bit programs Explore a vast variety of stealth techniques to bypass a number of protections when penetration testingWho This Book Is For This book is for anyone who wants to improve their skills in penetration testing. As it follows a step-by-step approach, anyone from a novice to an experienced security tester can learn effective techniques to deal with highly secured environments. Whether you are brand new or a seasoned expert, this book will provide you with the skills you need to successfully create, customize, and plan an advanced penetration test. What You Will Learn A step-by-step methodology to identify and penetrate secured environments Get to know the process to test network services across enterprise architecture when defences are in place Grasp different web application testing methods and how to identify web application protections that are deployed Understand a variety of concepts to exploit software Gain proven post-exploitation techniques to exfiltrate data from the target Get to grips with various stealth techniques to remain undetected and defeat the latest defences Be the first to find out the latest methods to bypass firewalls Follow proven approaches to record and save the data from tests for analysisIn Detail The defences continue to improve and become more and more common, but this book will provide you with a number or proven techniques to defeat the latest defences on the networks. The methods and techniques contained will provide you with a powerful arsenal of best practices to increase your penetration testing successes. The processes and methodology will provide you techniques that will enable you to be successful, and the step by step instructions of information gathering and intelligence will allow you to gather the required information on the targets you are testing. The exploitation and post-exploitation sections will supply you with the tools you would need to go as far as the scope of work will allow you. The challenges at the end of each chapter are designed to challenge you and provide real-world situations that will hone and perfect your penetration testing skills. You will start with a review of several well respected penetration testing methodologies, and following this you will learn a step-by-step methodology of professional security testing, including stealth, methods of evasion, and obfuscation to perform your tests and not be detected! The final challenge will allow you to create your own complex layered architecture with defences and protections in place, and provide the ultimate testing range for you to practice the methods shown throughout the book. The challenge is as close to an actual penetration test assignment as you can get!Style and approach The book follows the standard penetration testing stages from start to finish with step-by-step examples. The book thoroughly covers penetration test expectations, proper scoping and planning, as well as enumeration and foot printing. |
| Beschreibung: | 1 online resource |
| ISBN: | 9781784392024 1784392022 9781784395810 1784395811 |
Internformat
MARC
| LEADER | 00000cam a2200000M 4500 | ||
|---|---|---|---|
| 001 | ZDB-4-EBA-ocn969073751 | ||
| 003 | OCoLC | ||
| 005 | 20241004212047.0 | ||
| 006 | m o d | ||
| 007 | tz | ||
| 008 | 160329s2016 xx o 000 0 eng d | ||
| 040 | |a FEM |b eng |e pn |c FEM |d OCLCQ |d N$T |d OCLCF |d COO |d EBLCP |d CHVBK |d DEBBG |d IDB |d MERUC |d VT2 |d UOK |d WYU |d LVT |d AGLDB |d G3B |d IGB |d STF |d BTN |d AUW |d INTCL |d MHW |d SNK |d OCL |d OCLCQ |d MNU |d OCLCO |d OCLCQ |d OCLCO |d OCLCL | ||
| 019 | |a 951665756 |a 968040215 |a 1076735729 |a 1264836588 | ||
| 020 | |a 9781784392024 |q (electronic bk.) | ||
| 020 | |a 1784392022 | ||
| 020 | |a 9781784395810 | ||
| 020 | |a 1784395811 |q (Trade Paper) | ||
| 024 | 3 | |a 9781784395810 | |
| 035 | |a (OCoLC)969073751 |z (OCoLC)951665756 |z (OCoLC)968040215 |z (OCoLC)1076735729 |z (OCoLC)1264836588 | ||
| 037 | |a 3992648580910324139 |b TotalBoox |f Ebook only |n www.totalboox.com | ||
| 050 | 4 | |a QA76.9.A25 | |
| 072 | 7 | |a COM |x 053000 |2 bisacsh | |
| 082 | 7 | |a 005.8 |2 23 | |
| 082 | 7 | |a [E] | |
| 049 | |a MAIN | ||
| 100 | 1 | |a Allen, Lee |c (Information security specialist), |e author. |1 https://id.oclc.org/worldcat/entity/E39PCjqVyfd9R6JJjMYxthCTVC |0 http://id.loc.gov/authorities/names/no2021136571 | |
| 245 | 1 | 0 | |a Advanced penetration testing for highly-secured environments / |c Lee Allen, Kevin Cardwell. |
| 250 | |a Second edition. | ||
| 260 | |b Packt Publishing |c 2016. | ||
| 300 | |a 1 online resource | ||
| 336 | |a text |b txt |2 rdacontent | ||
| 337 | |a computer |b c |2 rdamedia | ||
| 338 | |a online resource |b cr |2 rdacarrier | ||
| 347 | |a text file |2 rda | ||
| 520 | |a Employ the most advanced pentesting techniques and tools to build highly-secured systems and environmentsAbout This Book Learn how to build your own pentesting lab environment to practice advanced techniques Customize your own scripts, and learn methods to exploit 32-bit and 64-bit programs Explore a vast variety of stealth techniques to bypass a number of protections when penetration testingWho This Book Is For This book is for anyone who wants to improve their skills in penetration testing. As it follows a step-by-step approach, anyone from a novice to an experienced security tester can learn effective techniques to deal with highly secured environments. Whether you are brand new or a seasoned expert, this book will provide you with the skills you need to successfully create, customize, and plan an advanced penetration test. What You Will Learn A step-by-step methodology to identify and penetrate secured environments Get to know the process to test network services across enterprise architecture when defences are in place Grasp different web application testing methods and how to identify web application protections that are deployed Understand a variety of concepts to exploit software Gain proven post-exploitation techniques to exfiltrate data from the target Get to grips with various stealth techniques to remain undetected and defeat the latest defences Be the first to find out the latest methods to bypass firewalls Follow proven approaches to record and save the data from tests for analysisIn Detail The defences continue to improve and become more and more common, but this book will provide you with a number or proven techniques to defeat the latest defences on the networks. The methods and techniques contained will provide you with a powerful arsenal of best practices to increase your penetration testing successes. The processes and methodology will provide you techniques that will enable you to be successful, and the step by step instructions of information gathering and intelligence will allow you to gather the required information on the targets you are testing. The exploitation and post-exploitation sections will supply you with the tools you would need to go as far as the scope of work will allow you. The challenges at the end of each chapter are designed to challenge you and provide real-world situations that will hone and perfect your penetration testing skills. You will start with a review of several well respected penetration testing methodologies, and following this you will learn a step-by-step methodology of professional security testing, including stealth, methods of evasion, and obfuscation to perform your tests and not be detected! The final challenge will allow you to create your own complex layered architecture with defences and protections in place, and provide the ultimate testing range for you to practice the methods shown throughout the book. The challenge is as close to an actual penetration test assignment as you can get!Style and approach The book follows the standard penetration testing stages from start to finish with step-by-step examples. The book thoroughly covers penetration test expectations, proper scoping and planning, as well as enumeration and foot printing. | ||
| 588 | 0 | |a Vendor-supplied metadata. | |
| 505 | 0 | |a Cover -- Copyright -- Credits -- About the Authors -- About the Reviewer -- www.PacktPub.com -- Table of Contents -- Preface -- Chapter 1: Penetration Testing Essentials -- Methodology defined -- Example methodologies -- Penetration testing framework -- Penetration Testing Execution Standard -- Pre-engagement interactions -- Intelligence gathering -- Threat modeling -- Vulnerability analysis -- Exploitation -- Post exploitation -- Reporting -- Abstract methodology -- Final thoughts -- Summary -- Chapter 2: Preparing a Test Environment -- Introducing VMware Workstation -- Why VMware Workstation? -- Installing VMware Workstation -- Network design -- VMnet0 -- VMnet1 -- VMnet8 -- Folders -- Understanding the default architecture -- Installing Kali Linux -- Creating the switches -- Putting it all together -- Installing Ubuntu LTS -- Installing Kioptrix -- Creating pfSense VM -- Summary -- Chapter 3: Assessment Planning -- Introducing advanced penetration testing -- Vulnerability assessments -- Penetration testing -- Advanced penetration testing -- Before testing begins -- Determining scope -- Setting limits -- nothing lasts forever -- Rules of Engagement documentation -- Planning for action -- Configuring Kali -- Updating the applications and operating system -- Installing LibreOffice -- Effectively managing your test results -- Introduction to MagicTree -- Starting MagicTree -- Adding nodes -- Data collection -- Report generation -- Introduction to the Dradis framework -- Exporting a project template -- Importing a project template -- Preparing sample data for import -- Importing your Nmap data -- Exporting data into HTML -- Dradis Category field -- Changing the default HTML template -- Summary -- Chapter 4: Intelligence Gathering -- Introducing reconnaissance -- Reconnaissance workflow -- DNS recon -- nslookup -- it's there when you need it. | |
| 505 | 8 | |a Default output -- Changing nameservers -- Creating an automation script -- What did we learn? -- Domain information groper -- Default output -- Zone transfers using Dig -- Advanced features of Dig -- DNS brute-forcing with fierce -- Default command usage -- Creating a custom word list -- Gathering and validating domain and IP information -- Gathering information with Whois -- Specifying which registrar to use -- Where in the world is this IP? -- Defensive measures -- Using search engines to do your job for you -- Shodan -- Filters -- Understanding banners -- Finding specific assets -- Finding people (and their documents) on the Web -- Google hacking database -- Searching the Internet for clues -- Creating network baselines with scanPBNJ -- Metadata collection -- Extracting metadata from photos using exiftool -- Summary -- Chapter 5: Network Service Attacks -- Configuring and testing our lab clients -- Kali -- manual ifconfig -- Ubuntu -- manual ifconfig -- Verifying connectivity -- Maintaining IP settings after reboot -- Angry IP Scanner -- Nmap -- getting to know you -- Commonly seen Nmap scan types and options -- Basic scans -- warming up -- Other Nmap techniques -- Remaining stealthy -- Shifting blame -- the zombies did it! -- IDS rules and how to avoid them -- Using decoys -- Adding custom Nmap scripts to your arsenal -- Deciding if a script is right for you -- Adding a new script to the database -- Zenmap -- for those who want the GUI -- SNMP -- a goldmine of information just waiting to be discovered -- When the SNMP community string is NOT "public -- Network baselines with ScanPBNJ -- Setting up MySQL for PBNJ -- Preparing the PBNJ database -- First scan -- Reviewing the data -- Enumeration avoidance techniques -- Naming conventions -- Port knocking -- Intrusion detection and avoidance systems -- Trigger points -- SNMP lockdown -- Reader challenge. | |
| 505 | 8 | |a C"ing is believing -- Create a vulnerable program -- Turning ASLR on and off in Kali -- Understanding the basics of buffer overflows -- 64-bit exploitation -- Introducing vulnserver -- Fuzzing tools included in Kali -- Bruteforce Exploit Detector (BED) -- sfuzz -- Simple fuzzer -- Social Engineering Toolkit -- Fast-Track -- Reader challenge -- Summary -- Chapter 9: Post-Exploitation -- Rules of Engagement -- What is permitted? -- Can you modify anything and everything? -- Are you allowed to add persistence? -- How is the data that is collected and stored handled by you and your team? -- Employee data and personal information -- Data gathering, network analysis, and pillaging -- Linux -- Important directories and files -- Important commands -- Putting this information to use -- Enumeration -- Exploitation -- We are connected, now what? -- Which tools are available on the remote system? -- Finding network information -- Determine connections -- Checking installed packages -- Package repositories -- Programs and services that run at startup -- Searching for information -- History files and logs -- Configurations, settings, and other files -- Users and credentials -- Moving the files -- Microsoft Windows™ post-exploitation -- Important directories and files -- Using Armitage for post-exploitation -- Enumeration -- Exploitation -- We are connected, now what? -- Networking details -- Finding installed software and tools -- Pivoting -- Reader challenge -- Summary -- Chapter 10: Stealth Techniques -- Lab preparation -- Kali guest machine -- Ubuntu guest machine -- The pfSense guest machine configuration -- The pfSense network setup -- WAN IP configuration -- LAN IP configuration -- Firewall configuration -- Stealth scanning through the firewall -- Finding the ports -- Traceroute to find out if there is a firewall. | |
| 505 | 8 | |a Finding out if the firewall is blocking certain ports -- Now you see me, now you don't -- avoiding IDS -- Canonicalization -- Timing is everything -- Blending in -- PfSense SSH logs -- Looking at traffic patterns -- Cleaning up compromised hosts -- Using a checklist -- When to clean up -- Local log files -- Miscellaneous evasion techniques -- Divide and conquer -- Hiding out (on controlled units) -- File Integrity Monitoring (FIM) -- Using common network management tools to do the deed -- Reader challenge -- Summary -- Chapter 11: Data Gathering and Reporting -- Record now -- sort later -- Old school -- the text editor method -- Nano -- VIM -the power user's text editor of choice -- Gedit -- Gnome text editor -- Dradis framework for collaboration -- Binding to an available interface other than 127.0.0.1 -- The report -- Reader challenge -- Summary -- Chapter 12: Penetration Testing Challenge -- Firewall lab setup -- Installing additional packages in pfSense -- The scenario -- The virtual lab setup -- AspenMLC Research Labs' virtual network -- Additional system modifications -- Ubuntu 8.10 server modifications -- The challenge -- The walkthrough -- Defining the scope -- Determining the "why -- So what is the "why" of this particular test? -- Developing the Rules of Engagement document -- Initial plan of attack -- Enumeration and exploitation -- Reporting -- Summary -- Index. | |
| 650 | 0 | |a Penetration testing (Computer security) |0 http://id.loc.gov/authorities/subjects/sh2011003137 | |
| 650 | 0 | |a Computer networks |x Security measures. |0 http://id.loc.gov/authorities/subjects/sh94001277 | |
| 650 | 0 | |a Computer security |x Management. | |
| 650 | 6 | |a Tests d'intrusion. | |
| 650 | 6 | |a Réseaux d'ordinateurs |x Sécurité |x Mesures. | |
| 650 | 6 | |a Sécurité informatique |x Gestion. | |
| 650 | 7 | |a COMPUTERS |x Security |x General. |2 bisacsh | |
| 650 | 7 | |a Penetration testing (Computer security) |2 fast | |
| 650 | 7 | |a Computer networks |x Security measures |2 fast | |
| 650 | 7 | |a Computer security |x Management |2 fast | |
| 655 | 4 | |a Operating Systems; Security; Software Development & Engineering. | |
| 700 | 1 | |a Cardwell, Kevin, |e author. | |
| 758 | |i has work: |a Advanced penetration testing for highly-secured environments (Text) |1 https://id.oclc.org/worldcat/entity/E39PCGVvWHD8TcHmFFwxcWfj83 |4 https://id.oclc.org/worldcat/ontology/hasWork | ||
| 776 | 0 | 8 | |i Erscheint auch als: |n Druck-Ausgabe |t Allen, Lee. Advanced Penetration Testing for Highly-Secured Environments |
| 966 | 4 | 0 | |l DE-862 |p ZDB-4-EBA |q FWS_PDA_EBA |u https://search.ebscohost.com/login.aspx?direct=true&scope=site&db=nlebk&AN=1213965 |3 Volltext |
| 966 | 4 | 0 | |l DE-863 |p ZDB-4-EBA |q FWS_PDA_EBA |u https://search.ebscohost.com/login.aspx?direct=true&scope=site&db=nlebk&AN=1213965 |3 Volltext |
| 938 | |a EBL - Ebook Library |b EBLB |n EBL4520648 | ||
| 938 | |a EBSCOhost |b EBSC |n 1213965 | ||
| 994 | |a 92 |b GEBAY | ||
| 912 | |a ZDB-4-EBA | ||
| 049 | |a DE-862 | ||
| 049 | |a DE-863 | ||
Datensatz im Suchindex
| DE-BY-FWS_katkey | ZDB-4-EBA-ocn969073751 |
|---|---|
| _version_ | 1826942139571896320 |
| adam_text | |
| any_adam_object | |
| author | Allen, Lee (Information security specialist) Cardwell, Kevin |
| author_GND | http://id.loc.gov/authorities/names/no2021136571 |
| author_facet | Allen, Lee (Information security specialist) Cardwell, Kevin |
| author_role | aut aut |
| author_sort | Allen, Lee (Information security specialist) |
| author_variant | l a la k c kc |
| building | Verbundindex |
| bvnumber | localFWS |
| callnumber-first | Q - Science |
| callnumber-label | QA76 |
| callnumber-raw | QA76.9.A25 |
| callnumber-search | QA76.9.A25 |
| callnumber-sort | QA 276.9 A25 |
| callnumber-subject | QA - Mathematics |
| collection | ZDB-4-EBA |
| contents | Cover -- Copyright -- Credits -- About the Authors -- About the Reviewer -- www.PacktPub.com -- Table of Contents -- Preface -- Chapter 1: Penetration Testing Essentials -- Methodology defined -- Example methodologies -- Penetration testing framework -- Penetration Testing Execution Standard -- Pre-engagement interactions -- Intelligence gathering -- Threat modeling -- Vulnerability analysis -- Exploitation -- Post exploitation -- Reporting -- Abstract methodology -- Final thoughts -- Summary -- Chapter 2: Preparing a Test Environment -- Introducing VMware Workstation -- Why VMware Workstation? -- Installing VMware Workstation -- Network design -- VMnet0 -- VMnet1 -- VMnet8 -- Folders -- Understanding the default architecture -- Installing Kali Linux -- Creating the switches -- Putting it all together -- Installing Ubuntu LTS -- Installing Kioptrix -- Creating pfSense VM -- Summary -- Chapter 3: Assessment Planning -- Introducing advanced penetration testing -- Vulnerability assessments -- Penetration testing -- Advanced penetration testing -- Before testing begins -- Determining scope -- Setting limits -- nothing lasts forever -- Rules of Engagement documentation -- Planning for action -- Configuring Kali -- Updating the applications and operating system -- Installing LibreOffice -- Effectively managing your test results -- Introduction to MagicTree -- Starting MagicTree -- Adding nodes -- Data collection -- Report generation -- Introduction to the Dradis framework -- Exporting a project template -- Importing a project template -- Preparing sample data for import -- Importing your Nmap data -- Exporting data into HTML -- Dradis Category field -- Changing the default HTML template -- Summary -- Chapter 4: Intelligence Gathering -- Introducing reconnaissance -- Reconnaissance workflow -- DNS recon -- nslookup -- it's there when you need it. Default output -- Changing nameservers -- Creating an automation script -- What did we learn? -- Domain information groper -- Default output -- Zone transfers using Dig -- Advanced features of Dig -- DNS brute-forcing with fierce -- Default command usage -- Creating a custom word list -- Gathering and validating domain and IP information -- Gathering information with Whois -- Specifying which registrar to use -- Where in the world is this IP? -- Defensive measures -- Using search engines to do your job for you -- Shodan -- Filters -- Understanding banners -- Finding specific assets -- Finding people (and their documents) on the Web -- Google hacking database -- Searching the Internet for clues -- Creating network baselines with scanPBNJ -- Metadata collection -- Extracting metadata from photos using exiftool -- Summary -- Chapter 5: Network Service Attacks -- Configuring and testing our lab clients -- Kali -- manual ifconfig -- Ubuntu -- manual ifconfig -- Verifying connectivity -- Maintaining IP settings after reboot -- Angry IP Scanner -- Nmap -- getting to know you -- Commonly seen Nmap scan types and options -- Basic scans -- warming up -- Other Nmap techniques -- Remaining stealthy -- Shifting blame -- the zombies did it! -- IDS rules and how to avoid them -- Using decoys -- Adding custom Nmap scripts to your arsenal -- Deciding if a script is right for you -- Adding a new script to the database -- Zenmap -- for those who want the GUI -- SNMP -- a goldmine of information just waiting to be discovered -- When the SNMP community string is NOT "public -- Network baselines with ScanPBNJ -- Setting up MySQL for PBNJ -- Preparing the PBNJ database -- First scan -- Reviewing the data -- Enumeration avoidance techniques -- Naming conventions -- Port knocking -- Intrusion detection and avoidance systems -- Trigger points -- SNMP lockdown -- Reader challenge. C"ing is believing -- Create a vulnerable program -- Turning ASLR on and off in Kali -- Understanding the basics of buffer overflows -- 64-bit exploitation -- Introducing vulnserver -- Fuzzing tools included in Kali -- Bruteforce Exploit Detector (BED) -- sfuzz -- Simple fuzzer -- Social Engineering Toolkit -- Fast-Track -- Reader challenge -- Summary -- Chapter 9: Post-Exploitation -- Rules of Engagement -- What is permitted? -- Can you modify anything and everything? -- Are you allowed to add persistence? -- How is the data that is collected and stored handled by you and your team? -- Employee data and personal information -- Data gathering, network analysis, and pillaging -- Linux -- Important directories and files -- Important commands -- Putting this information to use -- Enumeration -- Exploitation -- We are connected, now what? -- Which tools are available on the remote system? -- Finding network information -- Determine connections -- Checking installed packages -- Package repositories -- Programs and services that run at startup -- Searching for information -- History files and logs -- Configurations, settings, and other files -- Users and credentials -- Moving the files -- Microsoft Windows™ post-exploitation -- Important directories and files -- Using Armitage for post-exploitation -- Enumeration -- Exploitation -- We are connected, now what? -- Networking details -- Finding installed software and tools -- Pivoting -- Reader challenge -- Summary -- Chapter 10: Stealth Techniques -- Lab preparation -- Kali guest machine -- Ubuntu guest machine -- The pfSense guest machine configuration -- The pfSense network setup -- WAN IP configuration -- LAN IP configuration -- Firewall configuration -- Stealth scanning through the firewall -- Finding the ports -- Traceroute to find out if there is a firewall. Finding out if the firewall is blocking certain ports -- Now you see me, now you don't -- avoiding IDS -- Canonicalization -- Timing is everything -- Blending in -- PfSense SSH logs -- Looking at traffic patterns -- Cleaning up compromised hosts -- Using a checklist -- When to clean up -- Local log files -- Miscellaneous evasion techniques -- Divide and conquer -- Hiding out (on controlled units) -- File Integrity Monitoring (FIM) -- Using common network management tools to do the deed -- Reader challenge -- Summary -- Chapter 11: Data Gathering and Reporting -- Record now -- sort later -- Old school -- the text editor method -- Nano -- VIM -the power user's text editor of choice -- Gedit -- Gnome text editor -- Dradis framework for collaboration -- Binding to an available interface other than 127.0.0.1 -- The report -- Reader challenge -- Summary -- Chapter 12: Penetration Testing Challenge -- Firewall lab setup -- Installing additional packages in pfSense -- The scenario -- The virtual lab setup -- AspenMLC Research Labs' virtual network -- Additional system modifications -- Ubuntu 8.10 server modifications -- The challenge -- The walkthrough -- Defining the scope -- Determining the "why -- So what is the "why" of this particular test? -- Developing the Rules of Engagement document -- Initial plan of attack -- Enumeration and exploitation -- Reporting -- Summary -- Index. |
| ctrlnum | (OCoLC)969073751 |
| dewey-full | 005.8 |
| dewey-hundreds | 000 - Computer science, information, general works |
| dewey-ones | 005 - Computer programming, programs, data, security |
| dewey-raw | 005.8 [E] |
| dewey-search | 005.8 [E] |
| dewey-sort | 15.8 |
| dewey-tens | 000 - Computer science, information, general works |
| discipline | Informatik |
| edition | Second edition. |
| format | Electronic eBook |
| fullrecord | <?xml version="1.0" encoding="UTF-8"?><collection xmlns="http://www.loc.gov/MARC21/slim"><record><leader>13200cam a2200661M 4500</leader><controlfield tag="001">ZDB-4-EBA-ocn969073751</controlfield><controlfield tag="003">OCoLC</controlfield><controlfield tag="005">20241004212047.0</controlfield><controlfield tag="006">m o d </controlfield><controlfield tag="007">tz</controlfield><controlfield tag="008">160329s2016 xx o 000 0 eng d</controlfield><datafield tag="040" ind1=" " ind2=" "><subfield code="a">FEM</subfield><subfield code="b">eng</subfield><subfield code="e">pn</subfield><subfield code="c">FEM</subfield><subfield code="d">OCLCQ</subfield><subfield code="d">N$T</subfield><subfield code="d">OCLCF</subfield><subfield code="d">COO</subfield><subfield code="d">EBLCP</subfield><subfield code="d">CHVBK</subfield><subfield code="d">DEBBG</subfield><subfield code="d">IDB</subfield><subfield code="d">MERUC</subfield><subfield code="d">VT2</subfield><subfield code="d">UOK</subfield><subfield code="d">WYU</subfield><subfield code="d">LVT</subfield><subfield code="d">AGLDB</subfield><subfield code="d">G3B</subfield><subfield code="d">IGB</subfield><subfield code="d">STF</subfield><subfield code="d">BTN</subfield><subfield code="d">AUW</subfield><subfield code="d">INTCL</subfield><subfield code="d">MHW</subfield><subfield code="d">SNK</subfield><subfield code="d">OCL</subfield><subfield code="d">OCLCQ</subfield><subfield code="d">MNU</subfield><subfield code="d">OCLCO</subfield><subfield code="d">OCLCQ</subfield><subfield code="d">OCLCO</subfield><subfield code="d">OCLCL</subfield></datafield><datafield tag="019" ind1=" " ind2=" "><subfield code="a">951665756</subfield><subfield code="a">968040215</subfield><subfield code="a">1076735729</subfield><subfield code="a">1264836588</subfield></datafield><datafield tag="020" ind1=" " ind2=" "><subfield code="a">9781784392024</subfield><subfield code="q">(electronic bk.)</subfield></datafield><datafield tag="020" ind1=" " ind2=" "><subfield code="a">1784392022</subfield></datafield><datafield tag="020" ind1=" " ind2=" "><subfield code="a">9781784395810</subfield></datafield><datafield tag="020" ind1=" " ind2=" "><subfield code="a">1784395811</subfield><subfield code="q">(Trade Paper)</subfield></datafield><datafield tag="024" ind1="3" ind2=" "><subfield code="a">9781784395810</subfield></datafield><datafield tag="035" ind1=" " ind2=" "><subfield code="a">(OCoLC)969073751</subfield><subfield code="z">(OCoLC)951665756</subfield><subfield code="z">(OCoLC)968040215</subfield><subfield code="z">(OCoLC)1076735729</subfield><subfield code="z">(OCoLC)1264836588</subfield></datafield><datafield tag="037" ind1=" " ind2=" "><subfield code="a">3992648580910324139</subfield><subfield code="b">TotalBoox</subfield><subfield code="f">Ebook only</subfield><subfield code="n">www.totalboox.com</subfield></datafield><datafield tag="050" ind1=" " ind2="4"><subfield code="a">QA76.9.A25</subfield></datafield><datafield tag="072" ind1=" " ind2="7"><subfield code="a">COM</subfield><subfield code="x">053000</subfield><subfield code="2">bisacsh</subfield></datafield><datafield tag="082" ind1="7" ind2=" "><subfield code="a">005.8</subfield><subfield code="2">23</subfield></datafield><datafield tag="082" ind1="7" ind2=" "><subfield code="a">[E]</subfield></datafield><datafield tag="049" ind1=" " ind2=" "><subfield code="a">MAIN</subfield></datafield><datafield tag="100" ind1="1" ind2=" "><subfield code="a">Allen, Lee</subfield><subfield code="c">(Information security specialist),</subfield><subfield code="e">author.</subfield><subfield code="1">https://id.oclc.org/worldcat/entity/E39PCjqVyfd9R6JJjMYxthCTVC</subfield><subfield code="0">http://id.loc.gov/authorities/names/no2021136571</subfield></datafield><datafield tag="245" ind1="1" ind2="0"><subfield code="a">Advanced penetration testing for highly-secured environments /</subfield><subfield code="c">Lee Allen, Kevin Cardwell.</subfield></datafield><datafield tag="250" ind1=" " ind2=" "><subfield code="a">Second edition.</subfield></datafield><datafield tag="260" ind1=" " ind2=" "><subfield code="b">Packt Publishing</subfield><subfield code="c">2016.</subfield></datafield><datafield tag="300" ind1=" " ind2=" "><subfield code="a">1 online resource</subfield></datafield><datafield tag="336" ind1=" " ind2=" "><subfield code="a">text</subfield><subfield code="b">txt</subfield><subfield code="2">rdacontent</subfield></datafield><datafield tag="337" ind1=" " ind2=" "><subfield code="a">computer</subfield><subfield code="b">c</subfield><subfield code="2">rdamedia</subfield></datafield><datafield tag="338" ind1=" " ind2=" "><subfield code="a">online resource</subfield><subfield code="b">cr</subfield><subfield code="2">rdacarrier</subfield></datafield><datafield tag="347" ind1=" " ind2=" "><subfield code="a">text file</subfield><subfield code="2">rda</subfield></datafield><datafield tag="520" ind1=" " ind2=" "><subfield code="a">Employ the most advanced pentesting techniques and tools to build highly-secured systems and environmentsAbout This Book Learn how to build your own pentesting lab environment to practice advanced techniques Customize your own scripts, and learn methods to exploit 32-bit and 64-bit programs Explore a vast variety of stealth techniques to bypass a number of protections when penetration testingWho This Book Is For This book is for anyone who wants to improve their skills in penetration testing. As it follows a step-by-step approach, anyone from a novice to an experienced security tester can learn effective techniques to deal with highly secured environments. Whether you are brand new or a seasoned expert, this book will provide you with the skills you need to successfully create, customize, and plan an advanced penetration test. What You Will Learn A step-by-step methodology to identify and penetrate secured environments Get to know the process to test network services across enterprise architecture when defences are in place Grasp different web application testing methods and how to identify web application protections that are deployed Understand a variety of concepts to exploit software Gain proven post-exploitation techniques to exfiltrate data from the target Get to grips with various stealth techniques to remain undetected and defeat the latest defences Be the first to find out the latest methods to bypass firewalls Follow proven approaches to record and save the data from tests for analysisIn Detail The defences continue to improve and become more and more common, but this book will provide you with a number or proven techniques to defeat the latest defences on the networks. The methods and techniques contained will provide you with a powerful arsenal of best practices to increase your penetration testing successes. The processes and methodology will provide you techniques that will enable you to be successful, and the step by step instructions of information gathering and intelligence will allow you to gather the required information on the targets you are testing. The exploitation and post-exploitation sections will supply you with the tools you would need to go as far as the scope of work will allow you. The challenges at the end of each chapter are designed to challenge you and provide real-world situations that will hone and perfect your penetration testing skills. You will start with a review of several well respected penetration testing methodologies, and following this you will learn a step-by-step methodology of professional security testing, including stealth, methods of evasion, and obfuscation to perform your tests and not be detected! The final challenge will allow you to create your own complex layered architecture with defences and protections in place, and provide the ultimate testing range for you to practice the methods shown throughout the book. The challenge is as close to an actual penetration test assignment as you can get!Style and approach The book follows the standard penetration testing stages from start to finish with step-by-step examples. The book thoroughly covers penetration test expectations, proper scoping and planning, as well as enumeration and foot printing.</subfield></datafield><datafield tag="588" ind1="0" ind2=" "><subfield code="a">Vendor-supplied metadata.</subfield></datafield><datafield tag="505" ind1="0" ind2=" "><subfield code="a">Cover -- Copyright -- Credits -- About the Authors -- About the Reviewer -- www.PacktPub.com -- Table of Contents -- Preface -- Chapter 1: Penetration Testing Essentials -- Methodology defined -- Example methodologies -- Penetration testing framework -- Penetration Testing Execution Standard -- Pre-engagement interactions -- Intelligence gathering -- Threat modeling -- Vulnerability analysis -- Exploitation -- Post exploitation -- Reporting -- Abstract methodology -- Final thoughts -- Summary -- Chapter 2: Preparing a Test Environment -- Introducing VMware Workstation -- Why VMware Workstation? -- Installing VMware Workstation -- Network design -- VMnet0 -- VMnet1 -- VMnet8 -- Folders -- Understanding the default architecture -- Installing Kali Linux -- Creating the switches -- Putting it all together -- Installing Ubuntu LTS -- Installing Kioptrix -- Creating pfSense VM -- Summary -- Chapter 3: Assessment Planning -- Introducing advanced penetration testing -- Vulnerability assessments -- Penetration testing -- Advanced penetration testing -- Before testing begins -- Determining scope -- Setting limits -- nothing lasts forever -- Rules of Engagement documentation -- Planning for action -- Configuring Kali -- Updating the applications and operating system -- Installing LibreOffice -- Effectively managing your test results -- Introduction to MagicTree -- Starting MagicTree -- Adding nodes -- Data collection -- Report generation -- Introduction to the Dradis framework -- Exporting a project template -- Importing a project template -- Preparing sample data for import -- Importing your Nmap data -- Exporting data into HTML -- Dradis Category field -- Changing the default HTML template -- Summary -- Chapter 4: Intelligence Gathering -- Introducing reconnaissance -- Reconnaissance workflow -- DNS recon -- nslookup -- it's there when you need it.</subfield></datafield><datafield tag="505" ind1="8" ind2=" "><subfield code="a">Default output -- Changing nameservers -- Creating an automation script -- What did we learn? -- Domain information groper -- Default output -- Zone transfers using Dig -- Advanced features of Dig -- DNS brute-forcing with fierce -- Default command usage -- Creating a custom word list -- Gathering and validating domain and IP information -- Gathering information with Whois -- Specifying which registrar to use -- Where in the world is this IP? -- Defensive measures -- Using search engines to do your job for you -- Shodan -- Filters -- Understanding banners -- Finding specific assets -- Finding people (and their documents) on the Web -- Google hacking database -- Searching the Internet for clues -- Creating network baselines with scanPBNJ -- Metadata collection -- Extracting metadata from photos using exiftool -- Summary -- Chapter 5: Network Service Attacks -- Configuring and testing our lab clients -- Kali -- manual ifconfig -- Ubuntu -- manual ifconfig -- Verifying connectivity -- Maintaining IP settings after reboot -- Angry IP Scanner -- Nmap -- getting to know you -- Commonly seen Nmap scan types and options -- Basic scans -- warming up -- Other Nmap techniques -- Remaining stealthy -- Shifting blame -- the zombies did it! -- IDS rules and how to avoid them -- Using decoys -- Adding custom Nmap scripts to your arsenal -- Deciding if a script is right for you -- Adding a new script to the database -- Zenmap -- for those who want the GUI -- SNMP -- a goldmine of information just waiting to be discovered -- When the SNMP community string is NOT "public -- Network baselines with ScanPBNJ -- Setting up MySQL for PBNJ -- Preparing the PBNJ database -- First scan -- Reviewing the data -- Enumeration avoidance techniques -- Naming conventions -- Port knocking -- Intrusion detection and avoidance systems -- Trigger points -- SNMP lockdown -- Reader challenge.</subfield></datafield><datafield tag="505" ind1="8" ind2=" "><subfield code="a">C"ing is believing -- Create a vulnerable program -- Turning ASLR on and off in Kali -- Understanding the basics of buffer overflows -- 64-bit exploitation -- Introducing vulnserver -- Fuzzing tools included in Kali -- Bruteforce Exploit Detector (BED) -- sfuzz -- Simple fuzzer -- Social Engineering Toolkit -- Fast-Track -- Reader challenge -- Summary -- Chapter 9: Post-Exploitation -- Rules of Engagement -- What is permitted? -- Can you modify anything and everything? -- Are you allowed to add persistence? -- How is the data that is collected and stored handled by you and your team? -- Employee data and personal information -- Data gathering, network analysis, and pillaging -- Linux -- Important directories and files -- Important commands -- Putting this information to use -- Enumeration -- Exploitation -- We are connected, now what? -- Which tools are available on the remote system? -- Finding network information -- Determine connections -- Checking installed packages -- Package repositories -- Programs and services that run at startup -- Searching for information -- History files and logs -- Configurations, settings, and other files -- Users and credentials -- Moving the files -- Microsoft Windows™ post-exploitation -- Important directories and files -- Using Armitage for post-exploitation -- Enumeration -- Exploitation -- We are connected, now what? -- Networking details -- Finding installed software and tools -- Pivoting -- Reader challenge -- Summary -- Chapter 10: Stealth Techniques -- Lab preparation -- Kali guest machine -- Ubuntu guest machine -- The pfSense guest machine configuration -- The pfSense network setup -- WAN IP configuration -- LAN IP configuration -- Firewall configuration -- Stealth scanning through the firewall -- Finding the ports -- Traceroute to find out if there is a firewall.</subfield></datafield><datafield tag="505" ind1="8" ind2=" "><subfield code="a">Finding out if the firewall is blocking certain ports -- Now you see me, now you don't -- avoiding IDS -- Canonicalization -- Timing is everything -- Blending in -- PfSense SSH logs -- Looking at traffic patterns -- Cleaning up compromised hosts -- Using a checklist -- When to clean up -- Local log files -- Miscellaneous evasion techniques -- Divide and conquer -- Hiding out (on controlled units) -- File Integrity Monitoring (FIM) -- Using common network management tools to do the deed -- Reader challenge -- Summary -- Chapter 11: Data Gathering and Reporting -- Record now -- sort later -- Old school -- the text editor method -- Nano -- VIM -the power user's text editor of choice -- Gedit -- Gnome text editor -- Dradis framework for collaboration -- Binding to an available interface other than 127.0.0.1 -- The report -- Reader challenge -- Summary -- Chapter 12: Penetration Testing Challenge -- Firewall lab setup -- Installing additional packages in pfSense -- The scenario -- The virtual lab setup -- AspenMLC Research Labs' virtual network -- Additional system modifications -- Ubuntu 8.10 server modifications -- The challenge -- The walkthrough -- Defining the scope -- Determining the "why -- So what is the "why" of this particular test? -- Developing the Rules of Engagement document -- Initial plan of attack -- Enumeration and exploitation -- Reporting -- Summary -- Index.</subfield></datafield><datafield tag="650" ind1=" " ind2="0"><subfield code="a">Penetration testing (Computer security)</subfield><subfield code="0">http://id.loc.gov/authorities/subjects/sh2011003137</subfield></datafield><datafield tag="650" ind1=" " ind2="0"><subfield code="a">Computer networks</subfield><subfield code="x">Security measures.</subfield><subfield code="0">http://id.loc.gov/authorities/subjects/sh94001277</subfield></datafield><datafield tag="650" ind1=" " ind2="0"><subfield code="a">Computer security</subfield><subfield code="x">Management.</subfield></datafield><datafield tag="650" ind1=" " ind2="6"><subfield code="a">Tests d'intrusion.</subfield></datafield><datafield tag="650" ind1=" " ind2="6"><subfield code="a">Réseaux d'ordinateurs</subfield><subfield code="x">Sécurité</subfield><subfield code="x">Mesures.</subfield></datafield><datafield tag="650" ind1=" " ind2="6"><subfield code="a">Sécurité informatique</subfield><subfield code="x">Gestion.</subfield></datafield><datafield tag="650" ind1=" " ind2="7"><subfield code="a">COMPUTERS</subfield><subfield code="x">Security</subfield><subfield code="x">General.</subfield><subfield code="2">bisacsh</subfield></datafield><datafield tag="650" ind1=" " ind2="7"><subfield code="a">Penetration testing (Computer security)</subfield><subfield code="2">fast</subfield></datafield><datafield tag="650" ind1=" " ind2="7"><subfield code="a">Computer networks</subfield><subfield code="x">Security measures</subfield><subfield code="2">fast</subfield></datafield><datafield tag="650" ind1=" " ind2="7"><subfield code="a">Computer security</subfield><subfield code="x">Management</subfield><subfield code="2">fast</subfield></datafield><datafield tag="655" ind1=" " ind2="4"><subfield code="a">Operating Systems; Security; Software Development & Engineering.</subfield></datafield><datafield tag="700" ind1="1" ind2=" "><subfield code="a">Cardwell, Kevin,</subfield><subfield code="e">author.</subfield></datafield><datafield tag="758" ind1=" " ind2=" "><subfield code="i">has work:</subfield><subfield code="a">Advanced penetration testing for highly-secured environments (Text)</subfield><subfield code="1">https://id.oclc.org/worldcat/entity/E39PCGVvWHD8TcHmFFwxcWfj83</subfield><subfield code="4">https://id.oclc.org/worldcat/ontology/hasWork</subfield></datafield><datafield tag="776" ind1="0" ind2="8"><subfield code="i">Erscheint auch als:</subfield><subfield code="n">Druck-Ausgabe</subfield><subfield code="t">Allen, Lee. Advanced Penetration Testing for Highly-Secured Environments</subfield></datafield><datafield tag="966" ind1="4" ind2="0"><subfield code="l">DE-862</subfield><subfield code="p">ZDB-4-EBA</subfield><subfield code="q">FWS_PDA_EBA</subfield><subfield code="u">https://search.ebscohost.com/login.aspx?direct=true&scope=site&db=nlebk&AN=1213965</subfield><subfield code="3">Volltext</subfield></datafield><datafield tag="966" ind1="4" ind2="0"><subfield code="l">DE-863</subfield><subfield code="p">ZDB-4-EBA</subfield><subfield code="q">FWS_PDA_EBA</subfield><subfield code="u">https://search.ebscohost.com/login.aspx?direct=true&scope=site&db=nlebk&AN=1213965</subfield><subfield code="3">Volltext</subfield></datafield><datafield tag="938" ind1=" " ind2=" "><subfield code="a">EBL - Ebook Library</subfield><subfield code="b">EBLB</subfield><subfield code="n">EBL4520648</subfield></datafield><datafield tag="938" ind1=" " ind2=" "><subfield code="a">EBSCOhost</subfield><subfield code="b">EBSC</subfield><subfield code="n">1213965</subfield></datafield><datafield tag="994" ind1=" " ind2=" "><subfield code="a">92</subfield><subfield code="b">GEBAY</subfield></datafield><datafield tag="912" ind1=" " ind2=" "><subfield code="a">ZDB-4-EBA</subfield></datafield><datafield tag="049" ind1=" " ind2=" "><subfield code="a">DE-862</subfield></datafield><datafield tag="049" ind1=" " ind2=" "><subfield code="a">DE-863</subfield></datafield></record></collection> |
| genre | Operating Systems; Security; Software Development & Engineering. |
| genre_facet | Operating Systems; Security; Software Development & Engineering. |
| id | ZDB-4-EBA-ocn969073751 |
| illustrated | Not Illustrated |
| indexdate | 2025-03-18T14:23:16Z |
| institution | BVB |
| isbn | 9781784392024 1784392022 9781784395810 1784395811 |
| language | English |
| oclc_num | 969073751 |
| open_access_boolean | |
| owner | MAIN DE-862 DE-BY-FWS DE-863 DE-BY-FWS |
| owner_facet | MAIN DE-862 DE-BY-FWS DE-863 DE-BY-FWS |
| physical | 1 online resource |
| psigel | ZDB-4-EBA FWS_PDA_EBA ZDB-4-EBA |
| publishDate | 2016 |
| publishDateSearch | 2016 |
| publishDateSort | 2016 |
| publisher | Packt Publishing |
| record_format | marc |
| spelling | Allen, Lee (Information security specialist), author. https://id.oclc.org/worldcat/entity/E39PCjqVyfd9R6JJjMYxthCTVC http://id.loc.gov/authorities/names/no2021136571 Advanced penetration testing for highly-secured environments / Lee Allen, Kevin Cardwell. Second edition. Packt Publishing 2016. 1 online resource text txt rdacontent computer c rdamedia online resource cr rdacarrier text file rda Employ the most advanced pentesting techniques and tools to build highly-secured systems and environmentsAbout This Book Learn how to build your own pentesting lab environment to practice advanced techniques Customize your own scripts, and learn methods to exploit 32-bit and 64-bit programs Explore a vast variety of stealth techniques to bypass a number of protections when penetration testingWho This Book Is For This book is for anyone who wants to improve their skills in penetration testing. As it follows a step-by-step approach, anyone from a novice to an experienced security tester can learn effective techniques to deal with highly secured environments. Whether you are brand new or a seasoned expert, this book will provide you with the skills you need to successfully create, customize, and plan an advanced penetration test. What You Will Learn A step-by-step methodology to identify and penetrate secured environments Get to know the process to test network services across enterprise architecture when defences are in place Grasp different web application testing methods and how to identify web application protections that are deployed Understand a variety of concepts to exploit software Gain proven post-exploitation techniques to exfiltrate data from the target Get to grips with various stealth techniques to remain undetected and defeat the latest defences Be the first to find out the latest methods to bypass firewalls Follow proven approaches to record and save the data from tests for analysisIn Detail The defences continue to improve and become more and more common, but this book will provide you with a number or proven techniques to defeat the latest defences on the networks. The methods and techniques contained will provide you with a powerful arsenal of best practices to increase your penetration testing successes. The processes and methodology will provide you techniques that will enable you to be successful, and the step by step instructions of information gathering and intelligence will allow you to gather the required information on the targets you are testing. The exploitation and post-exploitation sections will supply you with the tools you would need to go as far as the scope of work will allow you. The challenges at the end of each chapter are designed to challenge you and provide real-world situations that will hone and perfect your penetration testing skills. You will start with a review of several well respected penetration testing methodologies, and following this you will learn a step-by-step methodology of professional security testing, including stealth, methods of evasion, and obfuscation to perform your tests and not be detected! The final challenge will allow you to create your own complex layered architecture with defences and protections in place, and provide the ultimate testing range for you to practice the methods shown throughout the book. The challenge is as close to an actual penetration test assignment as you can get!Style and approach The book follows the standard penetration testing stages from start to finish with step-by-step examples. The book thoroughly covers penetration test expectations, proper scoping and planning, as well as enumeration and foot printing. Vendor-supplied metadata. Cover -- Copyright -- Credits -- About the Authors -- About the Reviewer -- www.PacktPub.com -- Table of Contents -- Preface -- Chapter 1: Penetration Testing Essentials -- Methodology defined -- Example methodologies -- Penetration testing framework -- Penetration Testing Execution Standard -- Pre-engagement interactions -- Intelligence gathering -- Threat modeling -- Vulnerability analysis -- Exploitation -- Post exploitation -- Reporting -- Abstract methodology -- Final thoughts -- Summary -- Chapter 2: Preparing a Test Environment -- Introducing VMware Workstation -- Why VMware Workstation? -- Installing VMware Workstation -- Network design -- VMnet0 -- VMnet1 -- VMnet8 -- Folders -- Understanding the default architecture -- Installing Kali Linux -- Creating the switches -- Putting it all together -- Installing Ubuntu LTS -- Installing Kioptrix -- Creating pfSense VM -- Summary -- Chapter 3: Assessment Planning -- Introducing advanced penetration testing -- Vulnerability assessments -- Penetration testing -- Advanced penetration testing -- Before testing begins -- Determining scope -- Setting limits -- nothing lasts forever -- Rules of Engagement documentation -- Planning for action -- Configuring Kali -- Updating the applications and operating system -- Installing LibreOffice -- Effectively managing your test results -- Introduction to MagicTree -- Starting MagicTree -- Adding nodes -- Data collection -- Report generation -- Introduction to the Dradis framework -- Exporting a project template -- Importing a project template -- Preparing sample data for import -- Importing your Nmap data -- Exporting data into HTML -- Dradis Category field -- Changing the default HTML template -- Summary -- Chapter 4: Intelligence Gathering -- Introducing reconnaissance -- Reconnaissance workflow -- DNS recon -- nslookup -- it's there when you need it. Default output -- Changing nameservers -- Creating an automation script -- What did we learn? -- Domain information groper -- Default output -- Zone transfers using Dig -- Advanced features of Dig -- DNS brute-forcing with fierce -- Default command usage -- Creating a custom word list -- Gathering and validating domain and IP information -- Gathering information with Whois -- Specifying which registrar to use -- Where in the world is this IP? -- Defensive measures -- Using search engines to do your job for you -- Shodan -- Filters -- Understanding banners -- Finding specific assets -- Finding people (and their documents) on the Web -- Google hacking database -- Searching the Internet for clues -- Creating network baselines with scanPBNJ -- Metadata collection -- Extracting metadata from photos using exiftool -- Summary -- Chapter 5: Network Service Attacks -- Configuring and testing our lab clients -- Kali -- manual ifconfig -- Ubuntu -- manual ifconfig -- Verifying connectivity -- Maintaining IP settings after reboot -- Angry IP Scanner -- Nmap -- getting to know you -- Commonly seen Nmap scan types and options -- Basic scans -- warming up -- Other Nmap techniques -- Remaining stealthy -- Shifting blame -- the zombies did it! -- IDS rules and how to avoid them -- Using decoys -- Adding custom Nmap scripts to your arsenal -- Deciding if a script is right for you -- Adding a new script to the database -- Zenmap -- for those who want the GUI -- SNMP -- a goldmine of information just waiting to be discovered -- When the SNMP community string is NOT "public -- Network baselines with ScanPBNJ -- Setting up MySQL for PBNJ -- Preparing the PBNJ database -- First scan -- Reviewing the data -- Enumeration avoidance techniques -- Naming conventions -- Port knocking -- Intrusion detection and avoidance systems -- Trigger points -- SNMP lockdown -- Reader challenge. C"ing is believing -- Create a vulnerable program -- Turning ASLR on and off in Kali -- Understanding the basics of buffer overflows -- 64-bit exploitation -- Introducing vulnserver -- Fuzzing tools included in Kali -- Bruteforce Exploit Detector (BED) -- sfuzz -- Simple fuzzer -- Social Engineering Toolkit -- Fast-Track -- Reader challenge -- Summary -- Chapter 9: Post-Exploitation -- Rules of Engagement -- What is permitted? -- Can you modify anything and everything? -- Are you allowed to add persistence? -- How is the data that is collected and stored handled by you and your team? -- Employee data and personal information -- Data gathering, network analysis, and pillaging -- Linux -- Important directories and files -- Important commands -- Putting this information to use -- Enumeration -- Exploitation -- We are connected, now what? -- Which tools are available on the remote system? -- Finding network information -- Determine connections -- Checking installed packages -- Package repositories -- Programs and services that run at startup -- Searching for information -- History files and logs -- Configurations, settings, and other files -- Users and credentials -- Moving the files -- Microsoft Windows™ post-exploitation -- Important directories and files -- Using Armitage for post-exploitation -- Enumeration -- Exploitation -- We are connected, now what? -- Networking details -- Finding installed software and tools -- Pivoting -- Reader challenge -- Summary -- Chapter 10: Stealth Techniques -- Lab preparation -- Kali guest machine -- Ubuntu guest machine -- The pfSense guest machine configuration -- The pfSense network setup -- WAN IP configuration -- LAN IP configuration -- Firewall configuration -- Stealth scanning through the firewall -- Finding the ports -- Traceroute to find out if there is a firewall. Finding out if the firewall is blocking certain ports -- Now you see me, now you don't -- avoiding IDS -- Canonicalization -- Timing is everything -- Blending in -- PfSense SSH logs -- Looking at traffic patterns -- Cleaning up compromised hosts -- Using a checklist -- When to clean up -- Local log files -- Miscellaneous evasion techniques -- Divide and conquer -- Hiding out (on controlled units) -- File Integrity Monitoring (FIM) -- Using common network management tools to do the deed -- Reader challenge -- Summary -- Chapter 11: Data Gathering and Reporting -- Record now -- sort later -- Old school -- the text editor method -- Nano -- VIM -the power user's text editor of choice -- Gedit -- Gnome text editor -- Dradis framework for collaboration -- Binding to an available interface other than 127.0.0.1 -- The report -- Reader challenge -- Summary -- Chapter 12: Penetration Testing Challenge -- Firewall lab setup -- Installing additional packages in pfSense -- The scenario -- The virtual lab setup -- AspenMLC Research Labs' virtual network -- Additional system modifications -- Ubuntu 8.10 server modifications -- The challenge -- The walkthrough -- Defining the scope -- Determining the "why -- So what is the "why" of this particular test? -- Developing the Rules of Engagement document -- Initial plan of attack -- Enumeration and exploitation -- Reporting -- Summary -- Index. Penetration testing (Computer security) http://id.loc.gov/authorities/subjects/sh2011003137 Computer networks Security measures. http://id.loc.gov/authorities/subjects/sh94001277 Computer security Management. Tests d'intrusion. Réseaux d'ordinateurs Sécurité Mesures. Sécurité informatique Gestion. COMPUTERS Security General. bisacsh Penetration testing (Computer security) fast Computer networks Security measures fast Computer security Management fast Operating Systems; Security; Software Development & Engineering. Cardwell, Kevin, author. has work: Advanced penetration testing for highly-secured environments (Text) https://id.oclc.org/worldcat/entity/E39PCGVvWHD8TcHmFFwxcWfj83 https://id.oclc.org/worldcat/ontology/hasWork Erscheint auch als: Druck-Ausgabe Allen, Lee. Advanced Penetration Testing for Highly-Secured Environments |
| spellingShingle | Allen, Lee (Information security specialist) Cardwell, Kevin Advanced penetration testing for highly-secured environments / Cover -- Copyright -- Credits -- About the Authors -- About the Reviewer -- www.PacktPub.com -- Table of Contents -- Preface -- Chapter 1: Penetration Testing Essentials -- Methodology defined -- Example methodologies -- Penetration testing framework -- Penetration Testing Execution Standard -- Pre-engagement interactions -- Intelligence gathering -- Threat modeling -- Vulnerability analysis -- Exploitation -- Post exploitation -- Reporting -- Abstract methodology -- Final thoughts -- Summary -- Chapter 2: Preparing a Test Environment -- Introducing VMware Workstation -- Why VMware Workstation? -- Installing VMware Workstation -- Network design -- VMnet0 -- VMnet1 -- VMnet8 -- Folders -- Understanding the default architecture -- Installing Kali Linux -- Creating the switches -- Putting it all together -- Installing Ubuntu LTS -- Installing Kioptrix -- Creating pfSense VM -- Summary -- Chapter 3: Assessment Planning -- Introducing advanced penetration testing -- Vulnerability assessments -- Penetration testing -- Advanced penetration testing -- Before testing begins -- Determining scope -- Setting limits -- nothing lasts forever -- Rules of Engagement documentation -- Planning for action -- Configuring Kali -- Updating the applications and operating system -- Installing LibreOffice -- Effectively managing your test results -- Introduction to MagicTree -- Starting MagicTree -- Adding nodes -- Data collection -- Report generation -- Introduction to the Dradis framework -- Exporting a project template -- Importing a project template -- Preparing sample data for import -- Importing your Nmap data -- Exporting data into HTML -- Dradis Category field -- Changing the default HTML template -- Summary -- Chapter 4: Intelligence Gathering -- Introducing reconnaissance -- Reconnaissance workflow -- DNS recon -- nslookup -- it's there when you need it. Default output -- Changing nameservers -- Creating an automation script -- What did we learn? -- Domain information groper -- Default output -- Zone transfers using Dig -- Advanced features of Dig -- DNS brute-forcing with fierce -- Default command usage -- Creating a custom word list -- Gathering and validating domain and IP information -- Gathering information with Whois -- Specifying which registrar to use -- Where in the world is this IP? -- Defensive measures -- Using search engines to do your job for you -- Shodan -- Filters -- Understanding banners -- Finding specific assets -- Finding people (and their documents) on the Web -- Google hacking database -- Searching the Internet for clues -- Creating network baselines with scanPBNJ -- Metadata collection -- Extracting metadata from photos using exiftool -- Summary -- Chapter 5: Network Service Attacks -- Configuring and testing our lab clients -- Kali -- manual ifconfig -- Ubuntu -- manual ifconfig -- Verifying connectivity -- Maintaining IP settings after reboot -- Angry IP Scanner -- Nmap -- getting to know you -- Commonly seen Nmap scan types and options -- Basic scans -- warming up -- Other Nmap techniques -- Remaining stealthy -- Shifting blame -- the zombies did it! -- IDS rules and how to avoid them -- Using decoys -- Adding custom Nmap scripts to your arsenal -- Deciding if a script is right for you -- Adding a new script to the database -- Zenmap -- for those who want the GUI -- SNMP -- a goldmine of information just waiting to be discovered -- When the SNMP community string is NOT "public -- Network baselines with ScanPBNJ -- Setting up MySQL for PBNJ -- Preparing the PBNJ database -- First scan -- Reviewing the data -- Enumeration avoidance techniques -- Naming conventions -- Port knocking -- Intrusion detection and avoidance systems -- Trigger points -- SNMP lockdown -- Reader challenge. C"ing is believing -- Create a vulnerable program -- Turning ASLR on and off in Kali -- Understanding the basics of buffer overflows -- 64-bit exploitation -- Introducing vulnserver -- Fuzzing tools included in Kali -- Bruteforce Exploit Detector (BED) -- sfuzz -- Simple fuzzer -- Social Engineering Toolkit -- Fast-Track -- Reader challenge -- Summary -- Chapter 9: Post-Exploitation -- Rules of Engagement -- What is permitted? -- Can you modify anything and everything? -- Are you allowed to add persistence? -- How is the data that is collected and stored handled by you and your team? -- Employee data and personal information -- Data gathering, network analysis, and pillaging -- Linux -- Important directories and files -- Important commands -- Putting this information to use -- Enumeration -- Exploitation -- We are connected, now what? -- Which tools are available on the remote system? -- Finding network information -- Determine connections -- Checking installed packages -- Package repositories -- Programs and services that run at startup -- Searching for information -- History files and logs -- Configurations, settings, and other files -- Users and credentials -- Moving the files -- Microsoft Windows™ post-exploitation -- Important directories and files -- Using Armitage for post-exploitation -- Enumeration -- Exploitation -- We are connected, now what? -- Networking details -- Finding installed software and tools -- Pivoting -- Reader challenge -- Summary -- Chapter 10: Stealth Techniques -- Lab preparation -- Kali guest machine -- Ubuntu guest machine -- The pfSense guest machine configuration -- The pfSense network setup -- WAN IP configuration -- LAN IP configuration -- Firewall configuration -- Stealth scanning through the firewall -- Finding the ports -- Traceroute to find out if there is a firewall. Finding out if the firewall is blocking certain ports -- Now you see me, now you don't -- avoiding IDS -- Canonicalization -- Timing is everything -- Blending in -- PfSense SSH logs -- Looking at traffic patterns -- Cleaning up compromised hosts -- Using a checklist -- When to clean up -- Local log files -- Miscellaneous evasion techniques -- Divide and conquer -- Hiding out (on controlled units) -- File Integrity Monitoring (FIM) -- Using common network management tools to do the deed -- Reader challenge -- Summary -- Chapter 11: Data Gathering and Reporting -- Record now -- sort later -- Old school -- the text editor method -- Nano -- VIM -the power user's text editor of choice -- Gedit -- Gnome text editor -- Dradis framework for collaboration -- Binding to an available interface other than 127.0.0.1 -- The report -- Reader challenge -- Summary -- Chapter 12: Penetration Testing Challenge -- Firewall lab setup -- Installing additional packages in pfSense -- The scenario -- The virtual lab setup -- AspenMLC Research Labs' virtual network -- Additional system modifications -- Ubuntu 8.10 server modifications -- The challenge -- The walkthrough -- Defining the scope -- Determining the "why -- So what is the "why" of this particular test? -- Developing the Rules of Engagement document -- Initial plan of attack -- Enumeration and exploitation -- Reporting -- Summary -- Index. Penetration testing (Computer security) http://id.loc.gov/authorities/subjects/sh2011003137 Computer networks Security measures. http://id.loc.gov/authorities/subjects/sh94001277 Computer security Management. Tests d'intrusion. Réseaux d'ordinateurs Sécurité Mesures. Sécurité informatique Gestion. COMPUTERS Security General. bisacsh Penetration testing (Computer security) fast Computer networks Security measures fast Computer security Management fast |
| subject_GND | http://id.loc.gov/authorities/subjects/sh2011003137 http://id.loc.gov/authorities/subjects/sh94001277 |
| title | Advanced penetration testing for highly-secured environments / |
| title_auth | Advanced penetration testing for highly-secured environments / |
| title_exact_search | Advanced penetration testing for highly-secured environments / |
| title_full | Advanced penetration testing for highly-secured environments / Lee Allen, Kevin Cardwell. |
| title_fullStr | Advanced penetration testing for highly-secured environments / Lee Allen, Kevin Cardwell. |
| title_full_unstemmed | Advanced penetration testing for highly-secured environments / Lee Allen, Kevin Cardwell. |
| title_short | Advanced penetration testing for highly-secured environments / |
| title_sort | advanced penetration testing for highly secured environments |
| topic | Penetration testing (Computer security) http://id.loc.gov/authorities/subjects/sh2011003137 Computer networks Security measures. http://id.loc.gov/authorities/subjects/sh94001277 Computer security Management. Tests d'intrusion. Réseaux d'ordinateurs Sécurité Mesures. Sécurité informatique Gestion. COMPUTERS Security General. bisacsh Penetration testing (Computer security) fast Computer networks Security measures fast Computer security Management fast |
| topic_facet | Penetration testing (Computer security) Computer networks Security measures. Computer security Management. Tests d'intrusion. Réseaux d'ordinateurs Sécurité Mesures. Sécurité informatique Gestion. COMPUTERS Security General. Computer networks Security measures Computer security Management Operating Systems; Security; Software Development & Engineering. |
| work_keys_str_mv | AT allenlee advancedpenetrationtestingforhighlysecuredenvironments AT cardwellkevin advancedpenetrationtestingforhighlysecuredenvironments |