Book Image

Kali Linux - An Ethical Hacker's Cookbook

By : Himanshu Sharma
Book Image

Kali Linux - An Ethical Hacker's Cookbook

By: Himanshu Sharma

Overview of this book

With the current rate of hacking, it is very important to pentest your environment in order to ensure advanced-level security. This book is packed with practical recipes that will quickly get you started with Kali Linux (version 2016.2) according to your needs, and move on to core functionalities. This book will start with the installation and configuration of Kali Linux so that you can perform your tests. You will learn how to plan attack strategies and perform web application exploitation using tools such as Burp, and Jexboss. You will also learn how to perform network exploitation using Metasploit, Sparta, and Wireshark. Next, you will perform wireless and password attacks using tools such as Patator, John the Ripper, and airoscript-ng. Lastly, you will learn how to create an optimum quality pentest report! By the end of this book, you will know how to conduct advanced penetration testing thanks to the book’s crisp and task-oriented recipes.
Table of Contents (20 chapters)
Title Page
Credits
Disclaimer
About the Author
About the Reviewer
www.PacktPub.com
Customer Feedback
Preface
6
Wireless Attacks – Getting Past Aircrack-ng

Backdoors using meterpreters


Sometimes, we may also come across a file upload that is initially meant to upload files such as Excel, photos, and so on, but there are a few ways through which we can bypass it. In this recipe, you will see how to do that.

How to do it...

The following steps demonstrate the use of meterpreters:

  1. Here, we have a web application that uploads a photo:
  1. When we upload a photo, this is what we see in the application:
  1. Let's see what happens if we upload a .txt. We create one with test as the data:
  1. Let's try uploading it:
  1. Our image has been deleted! This might mean our application is doing either a client-side or a server-side check for file extension:
  1. Let's try to bypass the client-side check. We intercept the request in Burp and try to alter the extension in the data submitted:
  1. Now we change the extension from .txt to .txt;.png and click on forward:

This is still being deleted, which tells us that the application might be having a server-side check.

One of the way to bypass...