Book Image

Metasploit for Beginners

By : Sagar Rahalkar

Book Image

Metasploit for Beginners

By: Sagar Rahalkar

Overview of this book

This book will begin by introducing you to Metasploit and its functionality. Next, you will learn how to set up and configure Metasploit on various platforms to create a virtual test environment. You will also get your hands on various tools and components used by Metasploit. Further on in the book, you will learn how to find weaknesses in the target system and hunt for vulnerabilities using Metasploit and its supporting tools. Next, you'll get hands-on experience carrying out client-side attacks. Moving on, you'll learn about web application security scanning and bypassing anti-virus and clearing traces on the target system post compromise. This book will also keep you updated with the latest security techniques and methods that can be directly applied to scan, test, hack, and secure networks and systems with Metasploit. By the end of this book, you'll get the hang of bypassing different defenses, after which you'll learn how hackers use the network to gain access into different systems.

Preface

What this book covers

What you need for this book

Who this book is for

Reader feedback

Customer support

Free Chapter

Introduction to Metasploit and Supporting Tools

Introduction to Metasploit and Supporting Tools

The importance of penetration testing

Vulnerability assessment versus penetration testing

The need for a penetration testing framework

Introduction to Metasploit

When to use Metasploit?

Making Metasploit effective and powerful using supplementary tools

Setting up Your Environment

Setting up Your Environment

Using the Kali Linux virtual machine - the easiest way

Installing Metasploit on Windows

Installing Metasploit on Linux

Setting up exploitable targets in a virtual environment

Metasploit Components and Environment Configuration

Metasploit Components and Environment Configuration

Anatomy and structure of Metasploit

Metasploit components

Playing around with msfconsole

Variables in Metasploit

Updating the Metasploit Framework

Information Gathering with Metasploit

Information Gathering with Metasploit

Information gathering and enumeration

Password sniffing

Advanced search with shodan

Vulnerability Hunting with Metasploit

Vulnerability Hunting with Metasploit

Managing the database

Vulnerability detection with Metasploit auxiliaries

Auto exploitation with db_autopwn

Post exploitation

Client-side Attacks with Metasploit

Client-side Attacks with Metasploit

Need of client-side attacks

The msfvenom utility

Social Engineering with Metasploit

Browser Autopwn

Web Application Scanning with Metasploit

Web Application Scanning with Metasploit

Setting up a vulnerable application

Web application scanning using WMAP

Metasploit Auxiliaries for Web Application enumeration and scanning

Antivirus Evasion and Anti-Forensics

Antivirus Evasion and Anti-Forensics

Using encoders to avoid AV detection

Cyber Attack Management with Armitage

Cyber Attack Management with Armitage

What is Armitage?

Starting the Armitage console

Scanning and enumeration

Find and launch attacks

Extending Metasploit and Exploit Development

Extending Metasploit and Exploit Development

Exploit development concepts

Exploit templates and mixins

Adding external exploits to Metasploit

Customer Reviews

5 star

0

4 star

0

3 star

0

2 star

0

1 star

0

Reader feedback

Feedback from our readers is always welcome. Let us know what you think about this book—what you liked or may have disliked. Reader feedback is important for us to develop titles that you really get the most out of.

To send us general feedback, simply send an email to [email protected], and mention the book title via the subject of your message.

If there is a topic that you have expertise in and you are interested in either writing or contributing to a book, see our author guide on www.packtpub.com/authors.