In this chapter, we have explored some of the most common web application vulnerabilities plaguing cyber security. Attacks such as SQL injection, XSS, and username enumeration continue to be popular attack vectors for hackers to use. This chapter also provided two informative labs demonstrating Autopwn2 and BeEF. By completing the labs, you now have applied knowledge on how to use web app penetration tools to find vulnerabilities. The labs also showed how hackers may use the tools for recon and social engineering attacks. Towards the end of the chapter, we discussed different types of defenses that can be deployed against web application attacks. After reading this chapter, the user should have a much better understanding of what kind of vulnerabilities can be found in web apps and how to use the tools to fix the exploits found. Having this kind of knowledge will help the user increase their cyber security...
Applied Network Security
Applied Network Security
Overview of this book
Computer networks are increasing at an exponential rate and the most challenging factor organisations are currently facing is network security. Breaching a network is not considered an ingenious effort anymore, so it is very important to gain expertise in securing your network. The book begins by showing you how to identify malicious network behaviour and improve your wireless security. We will teach you what network sniffing is, the various tools associated with it, and how to scan for vulnerable wireless networks. Then we’ll show you how attackers hide the payloads and bypass the victim’s antivirus. Furthermore, we’ll teach you how to spoof IP / MAC address and perform an SQL injection attack and prevent it on your website. We will create an evil twin and demonstrate how to intercept network traffic. Later, you will get familiar with Shodan and Intrusion Detection and will explore the features and tools associated with it. Toward the end, we cover tools such as Yardstick, Ubertooth, Wifi Pineapple, and Alfa used for wireless penetration testing and auditing. This book will show the tools and platform to ethically hack your own network whether it is for your business or for your personal home Wi-Fi.
Table of Contents (18 chapters)
Introduction to Network Security
Sniffing the Network
How to Crack Wi-Fi Passwords
Creating a RAT Using Msfvenom
Social Engineering Toolkit and Browser Exploitation
Passing and Cracking the Hash
Web Application Exploits
Evil Twins and Spoofing
The Internet of Things
Advance Wireless Security Lab Using the Wi-Fi Pineapple Nano/Tetra