Book Image

Building a Pentesting Lab for Wireless Networks

By : Andrey Popov, Vyacheslav Fadyushin, Aaron Woody
Book Image

Building a Pentesting Lab for Wireless Networks

By: Andrey Popov, Vyacheslav Fadyushin, Aaron Woody

Overview of this book

Starting with the basics of wireless networking and its associated risks, we will guide you through the stages of creating a penetration testing lab with wireless access and preparing your wireless penetration testing machine. This book will guide you through configuring hardware and virtual network devices, filling the lab network with applications and security solutions, and making it look and work like a real enterprise network. The resulting lab protected with WPA-Enterprise will let you practice most of the attack techniques used in penetration testing projects. Along with a review of penetration testing frameworks, this book is also a detailed manual on preparing a platform for wireless penetration testing. By the end of this book, you will be at the point when you can practice, and research without worrying about your lab environment for every task.

Related Content you might be interested in

No titles found
Table of Contents (15 chapters)
Building a Pentesting Lab for Wireless Networks
Building a Pentesting Lab for Wireless Networks
Credits
Credits
About the Authors
About the Authors
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Understanding Wireless Network Security and Risks
Understanding Wireless Network Security and Risks
Understanding wireless environment and threats
Common WLAN protection mechanisms and their flaws
Getting familiar with the Wi-Fi attack workflow
Summary
2
Planning Your Lab Environment
Planning Your Lab Environment
Understanding what tasks your lab should fulfill
Planning the network topology
Choosing appropriate components
Planning lab security
Security hints
Summary
3
Configuring Networking Lab Components
Configuring Networking Lab Components
General lab network communication rules
Configuring hardware wired devices
Configuring virtual wired network devices
Configuring WLANs
Summary
4
Designing Application Lab Components
Designing Application Lab Components
Planning services
Creating virtual servers and workstations
Installing and configuring domain services
Certification authority services
Installing a remote management service
Corporative e-mail service
Installing vulnerable services
Installing web applications
Summary
5
Implementing Security
Implementing Security
Network-based security solutions
Host-based security solutions
SIEM
Summary
6
Exploring Hacking Toolkits
Exploring Hacking Toolkits
Wireless hacking tools
Infrastructure hacking tools
Cracking tools
Web application hacking tools
Summary
7
Preparing a Wireless Penetration Testing Platform
Preparing a Wireless Penetration Testing Platform
Common variants of the pentesting platform
Choosing an interface
Installing the necessary software
Preparing configs and scripts
Preparing a Kali USB stick
Summary
8
What's Next?
What's Next?
What you can learn
Courses and certificates
Pentesting standards
Information sources
Summary
Index
Index

Installing web applications

Nowadays when a lot of businesses are going online or at least have to be present on the Web, penetration testers mostly deal with web applications rather than with infrastructure pentests. Therefore, it is essential for a penetration tester to acquire web application hacking skills and improve them constantly.

Tip

Working with limited computing resources

If you experience a lack of computing power for creating other virtual servers, you can install all web applications on the same server. Alternatively, you can install some of them on the "attacker's machine" or the penetration testing machine that you are going to use for hacking.

We will use a LAMP (Linux, Apache, and MySQL*PHP) server based on Ubuntu Server 14.03.4 LTS to install web applications. But if you prefer to use Windows for some reason, you can use XAMPP—an Apache distribution containing MySQL, PHP, and Perl.

Preparing a web server

We will install all our lab web applications on the same web server under...

Previous Section
End of Section 9
Next Section