Book Image

Building Virtual Pentesting Labs for Advanced Penetration Testing

By : Kevin Cardwell
Book Image

Building Virtual Pentesting Labs for Advanced Penetration Testing

By: Kevin Cardwell

Overview of this book

Related Content you might be interested in

Current Title:

Small book image
Building Virtual Pentesting Labs for Advanced Penetration Testing
Kevin Cardwell
Jun, 2014 | 430 pages
No titles found
Table of Contents (20 chapters)
Building Virtual Pentesting Labs for Advanced Penetration Testing
Building Virtual Pentesting Labs for Advanced Penetration Testing
Credits
Credits
About the Author
About the Author
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Introducing Penetration Testing
Introducing Penetration Testing
Security testing
Abstract testing methodology
Myths and misconceptions of pen testing
Summary
2
Choosing the Virtual Environment
Choosing the Virtual Environment
Open source and free environments
Commercial environments
Image conversion
Converting from a physical to virtual environment
Summary
3
Planning a Range
Planning a Range
Planning
Identifying vulnerabilities
Summary
4
Identifying Range Architecture
Identifying Range Architecture
Building the machines
Selecting network connections
Choosing range components
Summary
5
Identifying a Methodology
Identifying a Methodology
The OSSTMM
CHECK
NIST SP-800-115
Summary
6
Creating an External Attack Architecture
Creating an External Attack Architecture
Establishing layered architectures
Configuring firewall architectures
iptables
Summary
7
Assessment of Devices
Assessment of Devices
Assessing routers
Evaluating switches
Attacking the firewall
Identifying the firewall rules
Tricks to penetrate filters
Summary
8
Architecting an IDS/IPS Range
Architecting an IDS/IPS Range
Deploying a network-based IDS
Implementing the host-based IDS and endpoint security
Working with virtual switches
Evasion
Summary
9
Assessment of Web Servers and Web Applications
Assessment of Web Servers and Web Applications
Analyzing the OWASP Top Ten attacks
Identifying web application firewalls
Penetrating web application firewalls
Tools
Summary
10
Testing Flat and Internal Networks
Testing Flat and Internal Networks
The role of Vulnerability Scanners
Dealing with host protection
Summary
11
Attacking Servers
Attacking Servers
Common protocols and applications for servers
Database assessment
OS platform specifics
Summary
12
Exploring Client-side Attack Vectors
Exploring Client-side Attack Vectors
Client-side attack methods
Pilfering data from the client
Using the client as a pivot point
Client-side exploitation
Binary payloads
Malicious PDF files
Bypassing antivirus and other protection tools
Obfuscation and encoding
Summary
13
Building a Complete Cyber Range
Building a Complete Cyber Range
Creating the layered architecture
Integrating decoys and honeypots
Attacking the cyber range
Recording the attack data for further training and analysis
Summary
Index
Index

About the Reviewers

Praveen Darshanam has over seven years of experience in Information Security with companies such as McAfee, Cisco Systems, and iPolicy Networks. His core expertise and passions are Vulnerability Research, Application Security and Malware Analysis, Signature Development, Snort, and much more. He pursued a Bachelor of Technology degree in Electrical Engineering and a Master of Engineering degree in Control and Instrumentation from one of the premier institutes of India. He holds industry certifications such as CHFI, CEH, and ECSA. He is a known Ethical Hacking trainer in India. He also blogs at http://blog.disects.com/.

I would like to thank my parents, sister, brother, wife, and son for their everlasting love, encouragement, and support.

Steven McElrea has been working in IT for over 10 years as a Microsoft Windows and Exchange Server administrator. Having been bitten by the security bug, he's been playing around and learning about InfoSec for several years now. He has a nice little blog (www.kioptrix.com) that does its best to show and teach newcomers the basic principles of information security. He is currently working in security professionally and he loves it. The switch to InfoSec is the best career move he has made.

I would like to thank everyone around me for putting up with me over the years. Big thanks to Aaron Woody (@shaisaint) for all the great Twitter conversations over the last few months. A special thanks goes out to my parents; without them, I wouldn't be the person I am today.

Sachin Raste is a leading security expert with over 18 years of experience in the field of Network Management and Information Security. With his team, he has designed, streamlined, and integrated networks, applications, and IT processes for some of the big business houses in India, and has successfully helped them achieve Business Continuity. He has also reviewed the book Metasploit Penetration Testing Cookbook, Packt Publishing. He can be followed on twitter at @essachin.

First and foremost, I'd like to thank my wife, my son, and my close group of friends, without whom everything in this world would have seemed impossible.

I would also like to thank everyone at MalwareMustDie NPO, a group of White hat security researchers who tackle malware, for their immense inspiration and support.

Abhinav Singh is a young information security specialist from India. He has a keen interest in the field of Information Security and has adopted it as his full-time profession. His core work areas include malware analysis, network security, and system and enterprise security. He is also the author of the books Metasploit Penetration Testing Cookbook and Instant Wireshark published by Packt Publishing.

Abhinav's work has been quoted in several Infosec magazines and portals. He shares his day-to-day security encounters on www.securitycalculus.com. Currently, he is working as a cyber security engineer for JP Morgan.

You can contact him at . His Twitter ID is @abhinavbom.

Aaron M. Woody is a security consultant specializing in penetration testing, security operations development, and security architecture. He is a speaker and instructor and teaches hacking and security concepts. He is currently pursuing the OSCP certification to add to his more than 16 years of experience in teaching. Aaron is the author of the book Enterprise Security – A Data-Centric Approach to Securing the Enterprise, Packt Publishing.

He also maintains a blog at www.datacentricsec.com. He can be followed on Twitter at @shaisaint.

Previous Section
Next Chapter