Book Image

Network Vulnerability Assessment

By : Sagar Rahalkar
Book Image

Network Vulnerability Assessment

By: Sagar Rahalkar

Overview of this book

The tech world has been taken over by digitization to a very large extent, and so it’s become extremely important for an organization to actively design security mechanisms for their network infrastructures. Analyzing vulnerabilities can be one of the best ways to secure your network infrastructure. Network Vulnerability Assessment starts with network security assessment concepts, workflows, and architectures. Then, you will use open source tools to perform both active and passive network scanning. As you make your way through the chapters, you will use these scanning results to analyze and design a threat model for network security. In the concluding chapters, you will dig deeper into concepts such as IP network analysis, Microsoft Services, and mail services. You will also get to grips with various security best practices, which will help you build your network security mechanism. By the end of this book, you will be in a position to build a security framework fit for an organization.

Related Content you might be interested in

Current Title:

Small book image
Network Vulnerability Assessment
Sagar Rahalkar
Aug, 2018 | 254 pages
Small book image
Metasploit for Beginners
Sagar Rahalkar
Jul, 2017 | 190 pages
Small book image
Metasploit 5.0 for Beginners
Sagar Rahalkar
Apr, 2020 | 246 pages
Small book image
Learn Kali Linux 2019
Glen D Singh
Nov, 2019 | 550 pages
Table of Contents (15 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Get in touch
Disclaimer
Free Chapter
1
Vulnerability Management Governance
Vulnerability Management Governance
Security basics
Understanding the need for security assessments
Business drivers for vulnerability management
Calculating ROIs
Setting up the context
Policy versus procedure versus standard versus guideline
Penetration testing standards
Industry standards
Summary
Exercises
2
Setting Up the Assessment Environment
Setting Up the Assessment Environment
Setting up a Kali virtual machine
Basics of Kali Linux
Environment configuration and setup
List of tools to be used during assessment
Summary
3
Security Assessment Prerequisites
Security Assessment Prerequisites
Target scoping and planning
Gathering requirements
Deciding upon the type of vulnerability assessment
Estimating the resources and deliverables
Preparing a test plan
Getting approval and signing NDAs
Summary
4
Information Gathering
Information Gathering
What is information gathering?
Passive information gathering
Active information gathering
Summary
5
Enumeration and Vulnerability Assessment
Enumeration and Vulnerability Assessment
What is enumeration?
Enumerating services
Using Nmap scripts
Vulnerability assessments using OpenVAS
Summary
6
Gaining Network Access
Gaining Network Access
Gaining remote access
Cracking passwords
Creating backdoors using Backdoor Factory
Exploiting remote services using Metasploit
Hacking embedded devices using RouterSploit
Social engineering using SET
Summary
7
Assessing Web Application Security
Assessing Web Application Security
Importance of web application security testing
Application profiling
Common web application security testing tools
Authentication
Authorization
Session management
Input validation
Security misconfiguration
Business logic flaws
Auditing and logging
Cryptography
Testing tools
Summary
8
Privilege Escalation
Privilege Escalation
What is privilege escalation?
Horizontal versus vertical privilege escalation
Privilege escalation on Windows
Privilege escalation on Linux
Summary
9
Maintaining Access and Clearing Tracks
Maintaining Access and Clearing Tracks
Maintaining access
Clearing tracks and trails
Anti-forensics
Summary
10
Vulnerability Scoring
Vulnerability Scoring
Requirements for vulnerability scoring
Vulnerability scoring using CVSS
CVSS calculator
Summary
11
Threat Modeling
Threat Modeling
What is threat modeling?
Benefits of threat modeling
Threat modeling terminology
How to model threats?
Threat modeling techniques
Threat modeling tools
Summary
12
Patching and Security Hardening
Patching and Security Hardening
Defining patching?
Patch enumeration
Security hardening and secure configuration reviews
Summary
13
Vulnerability Reporting and Metrics
Vulnerability Reporting and Metrics
Importance of reporting
Type of reports
Reporting tools
Collaborative vulnerability management with Faraday v2.6
Metrics
Summary
14
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

What this book covers

Chapter 1, Vulnerability Management Governance, is about understanding the essentials of vulnerability management program from a governance perspective and introducing the reader to some absolute basic security terminology and the essential prerequisites for initiating a security assessment.

Chapter 2, Setting Up the Assessment Environment, will introduce various methods and techniques for setting up a comprehensive vulnerability assessment and penetration testing environment.

Chapter 3, Security Assessment Prerequisites, is about knowing the prerequisites of security assessment. We will learn what all planning and scoping are required along with documentation to perform a successful security assessment.

Chapter 4, Information Gathering, is about learning various tools and techniques for gathering information about the target system. We will learn to apply various techniques and use multiple tools to effectively gather as much information as possible about the targets in scope. The information gathered from this stage would be used as input to the next stage.

Chapter 5, Enumeration and Vulnerability Assessment, is about exploring various tools and techniques for enumerating the targets in scope and performing a vulnerability assessment on them.

Chapter 6, Gaining Network Access, is about getting insights on how to gain access to a compromised system using various techniques and covert channels.

Chapter 7, Assessing Web Application Security, is about learning various aspects of web application security.

Chapter 8, Privilege Escalation, is about knowing various concepts related to privilege escalation. The reader would get familiar with various privilege escalation concepts along with practical techniques of escalating privileges on compromised Windows and Linux systems.

Chapter 9, Maintaining Access and Clearing Tracks, is about maintaining access on the compromised system and cleaning up tracks using anti-forensic techniques. We will learn to make persistent backdoors on the compromised system and use Metasploit's anti-forensic abilities to clear the penetration trails

Chapter 10, Vulnerability Scoring, is about understanding the importance of correct vulnerability scoring. We will understand the need of standard vulnerability scoring and gain hands-on knowledge on scoring vulnerabilities using CVSS.

Chapter 11, Threat Modeling, is about understanding and preparing threat models. We will understand the essential concepts of threat modeling and gain practical knowledge on using various tools for threat modeling.

Chapter 12, Patching and Security Hardening, is about understanding various aspects of patching and security hardening. We will understand the importance of patching along with practical techniques of enumerating patch levels on target systems and developing secure configuration guidelines for hardening the security of the infrastructure.

Chapter 13, Vulnerability Reporting and Metrics, is about exploring various metrics which could be built around the vulnerability management program. The reader would be able to understand the importance, design and implement metrics to measure the success of the organizational vulnerability management program.

Previous Section
Next Section