Book Image

KALI LINUX NETWORK SCANNING COOKBOOK

Book Image

KALI LINUX NETWORK SCANNING COOKBOOK

Overview of this book

Related Content you might be interested in

Current Title:

Small book image
KALI LINUX NETWORK SCANNING COOKBOOK
Aug, 2014 | 452 pages
No titles found
Table of Contents (16 chapters)
Kali Linux Network Scanning Cookbook
Kali Linux Network Scanning Cookbook
Credits
Credits
About the Author
About the Author
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Disclaimer
Disclaimer
Preface
Preface
Free Chapter
1
Getting Started
Getting Started
Configuring a security lab with VMware Player (Windows)
Configuring a security lab with VMware Fusion (Mac OS X)
Installing Ubuntu Server
Installing Metasploitable2
Installing Windows Server
Increasing the Windows attack surface
Installing Kali Linux
Configuring and using SSH
Installing Nessus on Kali Linux
Configuring Burp Suite on Kali Linux
Using text editors (VIM and Nano)
2
Discovery Scanning
Discovery Scanning
Using Scapy to perform layer 2 discovery
Using ARPing to perform layer 2 discovery
Using Nmap to perform layer 2 discovery
Using NetDiscover to perform layer 2 discovery
Using Metasploit to perform layer 2 discovery
Using ICMP ping to perform layer 3 discovery
Using Scapy to perform layer 3 discovery
Using Nmap to perform layer 3 discovery
Using fping to perform layer 3 discovery
Using hping3 to perform layer 3 discovery
Using Scapy to perform layer 4 discovery
Using Nmap to perform layer 4 discovery
Using hping3 to perform layer 4 discovery
3
Port Scanning
Port Scanning
UDP port scanning
TCP port scanning
UDP scanning with Scapy
UDP scanning with Nmap
UDP scanning with Metasploit
Stealth scanning with Scapy
Stealth scanning with Nmap
Stealth scanning with Metasploit
Stealth scanning with hping3
Connect scanning with Scapy
Connect scanning with Nmap
Connect scanning with Metasploit
Connect scanning with Dmitry
TCP port scanning with Netcat
Zombie scanning with Scapy
Zombie scanning with Nmap
4
Fingerprinting
Fingerprinting
Banner grabbing with Netcat
Banner grabbing with Python sockets
Banner grabbing with Dmitry
Banner grabbing with Nmap NSE
Banner grabbing with Amap
Service identification with Nmap
Service identification with Amap
Operating system identification with Scapy
Operating system identification with Nmap
Operating system identification with xProbe2
Passive operating system identification with p0f
SNMP analysis with Onesixtyone
SNMP analysis with SNMPwalk
Firewall identification with Scapy
Firewall identification with Nmap
Firewall identification with Metasploit
5
Vulnerability Scanning
Vulnerability Scanning
Vulnerability scanning with Nmap Scripting Engine
Vulnerability scanning with MSF auxiliary modules
Creating scan policies with Nessus
Vulnerability scanning with Nessus
Command-line scanning with Nessuscmd
Validating vulnerabilities with HTTP interaction
Validating vulnerabilities with ICMP interaction
6
Denial of Service
Denial of Service
Fuzz testing to identify buffer overflows
Remote FTP service buffer overflow DoS
Smurf DoS attack
DNS amplification DoS attack
SNMP amplification DoS attack
NTP amplification DoS attack
SYN flood DoS attack
Sock stress DoS attack
DoS attacks with Nmap NSE
DoS attacks with Metasploit
DoS attacks with the exploit database
7
Web Application Scanning
Web Application Scanning
Web application scanning with Nikto
SSL/TLS scanning with SSLScan
SSL/TLS scanning with SSLyze
Defining a web application target with Burp Suite
Using Burp Suite Spider
Using Burp Suite engagement tools
Using Burp Suite Proxy
Using the Burp Suite web application scanner
Using Burp Suite Intruder
Using Burp Suite Comparer
Using Burp Suite Repeater
Using Burp Suite Decoder
Using Burp Suite Sequencer
GET method SQL injection with sqlmap
POST method SQL injection with sqlmap
Requesting a capture SQL injection with sqlmap
Automating CSRF testing
Validating command injection vulnerabilities with HTTP traffic
Validating command injection vulnerabilities with ICMP traffic
8
Automating Kali Tools
Automating Kali Tools
Nmap greppable output analysis
Nmap port scanning with targeted NSE script execution
Nmap NSE vulnerability scanning with MSF exploitation
Nessuscmd vulnerability scanning with MSF exploitation
Multithreaded MSF exploitation with reverse shell payload
Multithreaded MSF exploitation with backdoor executable
Multithreaded MSF exploitation with ICMP verification
Multithreaded MSF exploitation with admin account creation
Index
Index

About the Reviewers

Daniel W. Dieterle is an internationally published security author, researcher, and technical editor. He has over 20 years of IT experience and has provided various levels of support and service to numerous companies from small businesses to large corporations. He authors and runs the Cyber Arms – Security blog (cyberarms.wordpress.com).

Eli Dobou is a young Information Systems Security Engineer. He is from Togo (West Africa). He earned his first Master's degree in Software Engineering at the Chongqing University of China in 2011. And two years later, he earned a second one in Cryptology and Information Security from the University of Limoges in France. He is currently working as an information security consultant in France.

Adriano dos Santos Gregório is an expert in operating systems, curious about new technologies, and passionate about mobile technologies. Being a Unix administrator since 1999, he focused on networking projects with emphasis on physical and logical security of various network environments and databases, as well as acting as a reviewer for Kali Linux Cookbook, Willie L. Pritchett and David De Smet, Packt Publishing. He is a Microsoft-certified MCSA and MCT alumni.

Thanks to my father, Carlos, and my mother, Flausina.

Javier Pérez Quezada is an I&D Director at Dreamlab Technologies (www.dreamlab.net). He is the founder and organizer of the 8.8 Computer Security Conference (www.8dot8.org). His specialties include web security, penetration testing, ethical hacking, vulnerability assessment, wireless security, security audit source code, secure programming, security consulting, e-banking security, data protection consultancy, NFC, EMV, POS, consulting ISO / IEC 27001, ITIL, OSSTMM Version 3.0, BackTrack, and Kali Linux. He has certifications in CSSA, CCSK, CEH, OPST, and OPSA. He is also an instructor at ISECOM OSSTMM for Latin America (www.isecom.org). He also has the following books to his credit:

  • Kali Linux Cookbook, Willie L. Pritchett and David De Smet, Packt Publishing

  • Kali Linux CTF Blueprints, Cameron Buchanan, Packt Publishing

  • Mastering Digital Forensics with Kali Linux, Massimiliano Sembiante, Packt Publishing (yet to be published)

Ahmad Muammar WK is an independent IT security consultant and penetration tester. He has been involved in information security for more than 10 years. He holds OSCP and OSCE certifications. He is one of the founders of ECHO (http://echo.or.id/), one of the oldest Indonesian computer security communities, and also one of the founders of IDSECCONF (http://idsecconf.org), the biggest annual security conference in Indonesia. He is well known in the Indonesian computer security community. He is one of the reviewers of Kali Linux Cookbook, Willie L. Pritchett and David De Smet, Packt Publishing. He can be reached via e-mail at or on Twitter at @y3dips.

Previous Section
Next Chapter