Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Advanced Infrastructure Penetration Testing
  • Table Of Contents Toc
Advanced Infrastructure Penetration Testing

Advanced Infrastructure Penetration Testing

2.4 (8)
Buy this Book
close
close
Advanced Infrastructure Penetration Testing

Advanced Infrastructure Penetration Testing

2.4 (8)
Buy this Book

Overview of this book

It has always been difficult to gain hands-on experience and a comprehensive understanding of advanced penetration testing techniques and vulnerability assessment and management. This book will be your one-stop solution to compromising complex network devices and modern operating systems. This book provides you with advanced penetration testing techniques that will help you exploit databases, web and application servers, switches or routers, Docker, VLAN, VoIP, and VPN. With this book, you will explore exploitation abilities such as offensive PowerShell tools and techniques, CI servers, database exploitation, Active Directory delegation, kernel exploits, cron jobs, VLAN hopping, and Docker breakouts. Moving on, this book will not only walk you through managing vulnerabilities, but will also teach you how to ensure endpoint protection. Toward the end of this book, you will also discover post-exploitation tips, tools, and methodologies to help your organization build an intelligent security system. By the end of this book, you will have mastered the skills and methodologies needed to breach infrastructures and provide complete endpoint protection for your system.
Table of Contents (14 chapters)
close
close
close
Preface
Icon
Preface
Icon
Who this book is for
Icon
What this book covers
Icon
To get the most out of this book
Icon
Get in touch
Icon
Disclaimer
Lock Free Chapter
1
Introduction to Advanced Infrastructure Penetration Testing
Icon
Introduction to Advanced Infrastructure Penetration Testing
Icon
Information security overview
Icon
Hacking concepts and phases
Icon
Penetration testing overview
Icon
Pentesting standards and guidance
Icon
Penetration testing steps
Icon
Penetration testing limitations and challenges
Icon
Pentesting maturity and scoring model
Icon
Summary
2
Advanced Linux Exploitation
Icon
Advanced Linux Exploitation
Icon
Linux basics
Icon
Security models
Icon
Security controls
Icon
Linux attack vectors
Icon
Linux kernel exploitation
Icon
Buffer overflow prevention techniques
Icon
Linux hardening
Icon
Summary
3
Corporate Network and Database Exploitation
Icon
Corporate Network and Database Exploitation
Icon
Networking fundamentals
Icon
Open Systems Interconnection model
Icon
In-depth network scanning
Icon
Services enumeration
Icon
Sniffing attacks
Icon
DDoS attacks
Icon
Software-Defined Network penetration testing
Icon
Attacks on database servers
Icon
Summary
4
Active Directory Exploitation
chevron up
Icon
Active Directory Exploitation
Icon
Active Directory
Icon
Single Sign-On
Icon
Kerberos authentication
Icon
Lightweight Directory Access Protocol
Icon
PowerShell and Active Directory
Icon
Active Directory attacks
Icon
Summary
5
Docker Exploitation
Icon
Docker Exploitation
Icon
Docker fundamentals
Icon
Docker exploitation
Icon
Docker bench security
Icon
Docker vulnerability static analysis with Clair
Icon
Building a penetration testing laboratory
Icon
Summary
6
Exploiting Git and Continuous Integration Servers
Icon
Exploiting Git and Continuous Integration Servers
Icon
Software development methodologies
Icon
Continuous integration
Icon
Continuous integration with GitHub and Jenkins
Icon
Continuous integration attacks
Icon
Continuous integration server penetration testing
Icon
Summary
7
Metasploit and PowerShell for Post-Exploitation
Icon
Metasploit and PowerShell for Post-Exploitation
Icon
Dissecting Metasploit Framework
Icon
Bypassing antivirus with the Veil-Framework
Icon
Writing your own Metasploit module
Icon
Metasploit Persistence scripts
Icon
Weaponized PowerShell with Metasploit
Icon
Defending against PowerShell attacks
Icon
Summary
8
VLAN Exploitation
Icon
VLAN Exploitation
Icon
Switching in networking
Icon
MAC attack
Icon
DHCP attacks
Icon
ARP attacks
Icon
VLAN attacks
Icon
Spanning Tree Protocol attacks
Icon
Summary
9
VoIP Exploitation
Icon
VoIP Exploitation
Icon
VoIP fundamentals
Icon
VoIP exploitation
Icon
VoLTE Exploitation
Icon
Summary
10
Insecure VPN Exploitation
Icon
Insecure VPN Exploitation
Icon
Cryptography
Icon
Hash functions and message integrity
Icon
Steganography
Icon
Key management
Icon
Cryptographic attacks
Icon
VPN fundamentals
Icon
Summary
11
Routing and Router Vulnerabilities
Icon
Routing and Router Vulnerabilities
Icon
Routing fundamentals
Icon
Exploiting routing protocols
Icon
Exploiting routers
Icon
Summary
12
Internet of Things Exploitation
Icon
Internet of Things Exploitation
Icon
The IoT ecosystem
Icon
IoT attack surfaces
Icon
Summary
13
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Leave a review - let other readers know what you think

Active Directory Exploitation

In the previous chapter, we explored how to exploit an organization's networks. We went from networking fundamentals to discovering the latest attacking methodologies. This chapter is your next step to gaining more knowledge about securing another important technical system for every modern company, which is Active Directory. We will take you to another level of experience following a well-designed plan to obtain the required skills to defend another environment.

The following topics will be covered in this chapter:

  • Learning Active Directory and Kerberos concepts
  • An overview of various Active Directory attacks
  • Learning what defensive measures are effective and how they mitigate current attacks
Visually different images
CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Advanced Infrastructure Penetration Testing
End of Section 4
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist download Download options
font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon