Learning Penetration Testing with Python

Book Image

Learning Penetration Testing with Python

By : Christopher Duffy

Book Image

Learning Penetration Testing with Python

By: Christopher Duffy

Overview of this book

Learning Penetration Testing with Python

Learning Penetration Testing with Python

Credits

Disclaimer

About the Author

About the Author

Acknowlegements

Acknowlegements

About the Reviewers

About the Reviewers

www.PacktPub.com

www.PacktPub.com

Preface

Free Chapter

Understanding the Penetration Testing Methodology

Understanding the Penetration Testing Methodology

An overview of penetration testing

Understanding what penetration testing is not

Assessment methodologies

The penetration testing execution standard

Penetration testing tools

The Basics of Python Scripting

The Basics of Python Scripting

Understanding the difference between interpreted and compiled languages

Python – the good and the bad

A Python interactive interpreter versus a script

Environmental variables and PATH

Understanding dynamically typed languages

The first Python script

Developing scripts and identifying errors

Python formatting

Python variables

Compound statements

The Python style guide

Arguments and options

Your first assessor script

Identifying Targets with Nmap, Scapy, and Python

Identifying Targets with Nmap, Scapy, and Python

Understanding how systems communicate

Understanding Nmap

Nmap libraries for Python

The Scapy library for Python

Executing Credential Attacks with Python

Executing Credential Attacks with Python

The types of credential attacks

Identifying the target

Creating targeted usernames

Testing for users using SMTP VRFY

Exploiting Services with Python

Exploiting Services with Python

Understanding the new age of service exploitation

Understanding the chaining of exploits

Automating the exploit train with Python

Assessing Web Applications with Python

Assessing Web Applications with Python

Identifying live applications versus open ports

Identifying hidden files and directories with Python

Credential attacks with Burp Suite

Using twill to walk through the source

Understanding when to use Python for web assessments

Cracking the Perimeter with Python

Cracking the Perimeter with Python

Understanding today's perimeter

Understanding the link between accounts and services

Cracking inboxes with Burp Suite

Identifying the attack path

Gaining access through websites

Exploit Development with Python, Metasploit, and Immunity

Exploit Development with Python, Metasploit, and Immunity

Getting started with registers

Understanding the Windows memory structure

Understanding memory addresses and endianness

Understanding the manipulation of the stack

Understanding immunity

Understanding basic buffer overflow

Writing a basic buffer overflow exploit

Understanding stack adjustments

Understanding the purpose of local exploits

Understanding other exploit scripts

Reversing Metasploit modules

Understanding protection mechanisms

Automating Reports and Tasks with Python

Automating Reports and Tasks with Python

Understanding how to parse XML files for reports

Understanding how to create a Python class

Adding Permanency to Python Tools

Adding Permanency to Python Tools

Understanding logging within Python

Understanding the difference between multithreading and multiprocessing

Building industry-standard tools

Index

Customer Reviews

5 star

0

4 star

0

3 star

0

2 star

0

1 star

0

Identifying the target

We are going to use Metasploitable as an example here, because it will allow you to test these concepts in a safe and legal environment. To start with, let us do a simple nmap scan of the system with a service detection. The following command highlights the specific arguments and options, which does SYN scan looking for the well-known ports on a system.

nmap -sS -vvv -Pn -sV<targetIP>

As you can see from the results, the host is identified as Metasploitable and a number of ports are open to include Simple Mail Transfer Protocol (SMTP) at port 25.