Book Image

Mastering Kali Linux for Advanced Penetration Testing, Second Edition - Second Edition

By : Vijay Kumar Velu
Book Image

Mastering Kali Linux for Advanced Penetration Testing, Second Edition - Second Edition

By: Vijay Kumar Velu

Overview of this book

This book will take you, as a tester or security practitioner through the journey of reconnaissance, vulnerability assessment, exploitation, and post-exploitation activities used by penetration testers and hackers. We will start off by using a laboratory environment to validate tools and techniques, and using an application that supports a collaborative approach to penetration testing. Further we will get acquainted with passive reconnaissance with open source intelligence and active reconnaissance of the external and internal networks. We will also focus on how to select, use, customize, and interpret the results from a variety of different vulnerability scanners. Specific routes to the target will also be examined, including bypassing physical security and exfiltration of data using different techniques. You will also get to grips with concepts such as social engineering, attacking wireless networks, exploitation of web applications and remote access connections. Later you will learn the practical aspects of attacking user client systems by backdooring executable files. You will focus on the most vulnerable part of the network—directly and bypassing the controls, attacking the end user and maintaining persistence access through social media. You will also explore approaches to carrying out advanced penetration testing in tightly secured environments, and the book's hands-on approach will help you understand everything you need to know during a Red teaming exercise or penetration testing
Table of Contents (15 chapters)

Working with Ghost Phisher

Similar to Fluxion, Kali has a built-in applicationfor performing Wi-Fi phishing in a GUI fashion. Ghost Phisher is built to identify wireless and for Ethernet security auditing. It is written entirely in Python and Python QT for the GUI library.

In order to harvest user credentials, attackers can utilize the Ghost Phisher application to launch a fake AP as shown in the following screenshot:

Ghost Phisher currently provides the following features for penetration testers or attackers:

  • Creating an HTTP server
  • DNS server
  • DHCP server
  • Credential logging page (for phishing the username and password)
  • AP emulator
  • Advanced session hijacking module
  • The option to perform ARP cache poisoning to perform MitM and DoS attacks, similar to Ettercap/BetterCap.
  • Allows attackers to embed Metasploit binding techniques
  • A SQLite database as credentials storage
...