Book Image

Effective Python Penetration Testing

By : Rejah Rehim
Book Image

Effective Python Penetration Testing

By: Rejah Rehim

Overview of this book

Penetration testing is a practice of testing a computer system, network, or web application to find weaknesses in security that an attacker can exploit. Effective Python Penetration Testing will help you utilize your Python scripting skills to safeguard your networks from cyberattacks. We will begin by providing you with an overview of Python scripting and penetration testing. You will learn to analyze network traffic by writing Scapy scripts and will see how to fingerprint web applications with Python libraries such as ProxMon and Spynner. Moving on, you will find out how to write basic attack scripts, and will develop debugging and reverse engineering skills with Python libraries. Toward the end of the book, you will discover how to utilize cryptography toolkits in Python and how to automate Python tools and libraries.

Related Content you might be interested in

Current Title:

Small book image
Effective Python Penetration Testing
Rejah Rehim
Jun, 2016 | 164 pages
No titles found
Table of Contents (16 chapters)
Effective Python Penetration Testing
Effective Python Penetration Testing
Credits
Credits
About the Author
About the Author
About the Reviewer
About the Reviewer
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Python Scripting Essentials
Python Scripting Essentials
Setting up the scripting environment
Installing third-party libraries
Python language essentials
Summary
2
Analyzing Network Traffic with Scapy
Analyzing Network Traffic with Scapy
Sockets modules
Raw socket programming
Investigate network traffic with Scapy
Summary
3
Application Fingerprinting with Python
Application Fingerprinting with Python
Web scraping
Parsing HTML with lxml
OS fingerprinting
Get the EXIF data of an image
Web application fingerprinting
Summary
4
Attack Scripting with Python
Attack Scripting with Python
Injections
Broken authentication
Cross-site scripting (XSS)
Insecure direct object references
Security misconfiguration
Sensitive data exposure
Missing function level access control
CSRF attacks
Using components with known vulnerabilities
Unvalidated redirects and forwards
Summary
5
Fuzzing and Brute-Forcing
Fuzzing and Brute-Forcing
Fuzzing
Classification of fuzzers
Fuzzing and brute-forcing passwords
Dictionary attack
SSH brute-forcing
SMTP brute-forcing
Brute-forcing directories and file locations
Brute-force cracking password protected ZIP files
Summary
6
Debugging and Reverse Engineering
Debugging and Reverse Engineering
Reverse engineering
Portable executable analysis
Listing all imported and exported symbols
Disassembling with Capstone
PEfile with Capstone
Debugging
Using PyDBG
Summary
7
Crypto, Hash, and Conversion Functions
Crypto, Hash, and Conversion Functions
Cryptographic algorithms
Hash functions
Summary
8
Keylogging and Screen Grabbing
Keylogging and Screen Grabbing
Keyloggers
Keyloggers with pyhook
Screen grabbing
Summary
9
Attack Automation
Attack Automation
Paramiko
python-nmap
W3af REST API
Metasploit scripting with MSGRPC
ClamAV antivirus with Python
OWASP ZAP from Python
Accessing Nessus 6 API with Python
Summary
10
Looking Forward
Looking Forward
Pentestly
Twisted
Nscan
sqlmap
CapTipper
Immunity Debugger
pytbull
ghost.py
peepdf
Summary

W3af REST API

Web Application audit and attack framework (W3af) is a powerful and flexible environment for web vulnerability assessments and for exploiting web application vulnerabilities. It has many plugins that could communicate with each other. For instance, the discovery plugin collects different URLs to test and pass on to the audit plugin, which uses these URLs to search for vulnerabilities. W3af could also exploit the vulnerabilities that it finds.

W3af has eight different types of plugin:

  • Discovery plugins: Crawl the web application to find new URLs, forms, and many other interesting parts of the web application. These plugins run in a loop, and the output is fed as the input to the next plugin.

  • Audit plugins: These are the main parts of W3af, and they take the output of discovery plugins as input and scan for all types of web application vulnerabilities like SQL, XSS injections, and others.

  • Grep plugins: Like the UNIX grep utility, they search each and every HTTP request and response...

Previous Section
End of Section 4
Next Section