Book Image

Python Penetration Testing Cookbook

By : Rejah Rehim
Book Image

Python Penetration Testing Cookbook

By: Rejah Rehim

Overview of this book

Penetration testing is the use of tools and code to attack a system in order to assess its vulnerabilities to external threats. Python allows pen testers to create their own tools. Since Python is a highly valued pen-testing language, there are many native libraries and Python bindings available specifically for pen-testing tasks. Python Penetration Testing Cookbook begins by teaching you how to extract information from web pages. You will learn how to build an intrusion detection system using network sniffing techniques. Next, you will find out how to scan your networks to ensure performance and quality, and how to carry out wireless pen testing on your network to avoid cyber attacks. After that, we’ll discuss the different kinds of network attack. Next, you’ll get to grips with designing your own torrent detection program. We’ll take you through common vulnerability scenarios and then cover buffer overflow exploitation so you can detect insecure coding. Finally, you’ll master PE code injection methods to safeguard your network.

Related Content you might be interested in

Current Title:

Small book image
Python Penetration Testing Cookbook
Rejah Rehim
Nov, 2017 | 226 pages
Small book image
Penetration Testing with Shellcode
Hamza Megahed
Feb, 2018 | 346 pages
Small book image
Python Penetration Testing Essentials
Mohit Raj
May, 2018 | 230 pages
Small book image
Offensive Shellcode from Scratch.
Rishalin Pillay
Apr, 2022 | 208 pages
Table of Contents (15 chapters)
Preface
Preface
What this book covers
What you need for this book
Who this book is for
Sections
Conventions
Reader feedback
Customer support
Free Chapter
1
Why Python in Penetration Testing?
Why Python in Penetration Testing?
Introduction
Why Python is a great option for security scripting
Python 3 language basics and differences
2
Setting Up a Python Environment
Setting Up a Python Environment
Introduction
Setting up a Python environment in Linux
Setting up a Python environment in macOS
Setting up a Python environment in Windows
3
Web Scraping with Python
Web Scraping with Python
Introduction
Download web pages with Python scripts
Changing the user agent
Downloading files
Using a regular expression to get the information from the downloaded web pages
Requesting and downloading dynamic website pages
Dynamic GET requests
4
Data Parsing with Python
Data Parsing with Python
Introduction
Parsing HTML tables
Extracting data from HTML documents
Parsing XML data
5
Web Scraping with Scrapy and BeautifulSoup
Web Scraping with Scrapy and BeautifulSoup
Introduction
Web spiders with Scrapy
Scrapy shell
Link extractor with Scrapy
Scraping after logging into websites using Scrapy
6
Network Scanning with Python
Network Scanning with Python
Introduction
Simple port scanner
IP range/network scanner
Stealth scanning
FIN scanning
XMAS scanning
TCP ACK scanning
LanScan
7
Network Sniffing with Python
Network Sniffing with Python
Introduction
Packet sniffer in Python
Parsing the packet
PyShark
8
Scapy Basics
Scapy Basics
Introduction
Creating a packet with Scapy
Sending and receiving packets with Scapy
Layering packets
Reading and writing to pcap files
Sniffing packets
ARP man-in-the-middle tool with Scapy
9
Wi-Fi Sniffing
Wi-Fi Sniffing
Introduction
Finding Wi-Fi devices
Getting ready
Finding SSIDs
Exposing hidden SSIDs
Dictionary attack on hidden SSIDs
Fake access points with Scapy
10
Layer 2 Attacks
Layer 2 Attacks
Introduction
ARP Watcher
ARP cache poisoning
MAC flooder
VLAN hopping
ARP spoofing over VLAN hopping
DHCP starvation
11
TCP/IP Attacks
TCP/IP Attacks
Introduction
IP spoofing
SYN flooding
Password sniffer with Python over LAN
12
Introduction to Exploit Development
Introduction to Exploit Development
Introduction
Memory dump
CPU instructions
13
Windows Exploit Development
Windows Exploit Development
Introduction
Windows memory layout
Buffer overflow with saved return pointer overwrite
Structured Exception Handling
Egg hunters
14
Linux Exploit Development
Linux Exploit Development
Introduction
Format string exploitation
Buffer overflow

Parsing the packet

Now we can try to parse the data that we sniffed, and unpack the headers. To parse a packet, we need to have an idea of the Ethernet frame and the packet headers of the IP.

The Ethernet frame structure is as follows:

The first six bytes are for the Destination MAC address and the next six bytes are for the Source MAC. The last two bytes are for the Ether Type. The rest includes DATA and CRC Checksum. According to RFC 791, an IP header looks like the following:

The IP header includes the following sections:

  • Protocol Version (four bits): The first four bits. This represents the current IP protocol.
  • Header Length (four bits): The length of the IP header is represented in 32-bit words. Since this field is four bits, the maximum header length allowed is 60 bytes. Usually the value is 5, which means five 32-bit words: 5 * 4 = 20 bytes.
  • Type of Service (eight...
Previous Section
End of Section 4
Next Section