Book Image

Python for Offensive PenTest

By : Hussam Khrais
Book Image

Python for Offensive PenTest

By: Hussam Khrais

Overview of this book

Python is an easy-to-learn and cross-platform programming language that has unlimited third-party libraries. Plenty of open source hacking tools are written in Python, which can be easily integrated within your script. This book is packed with step-by-step instructions and working examples to make you a skilled penetration tester. It is divided into clear bite-sized chunks, so you can learn at your own pace and focus on the areas of most interest to you. This book will teach you how to code a reverse shell and build an anonymous shell. You will also learn how to hack passwords and perform a privilege escalation on Windows with practical examples. You will set up your own virtual hacking environment in VirtualBox, which will help you run multiple operating systems for your testing environment. By the end of this book, you will have learned how to code your own scripts and mastered ethical hacking from scratch.
Table of Contents (13 chapters)
Title Page
Copyright and Credits
Packt Upsell

Bypassing reputation filtering in next generation firewalls

Next-generation firewalls are all-in-one firewalls. They have all the security features, such as IPS, antivirus, anti-spam, and reputation filtering, in a single box. In this section, we will discuss a major security feature, which can prevent us from getting our shell on our target. Now, let's assume that we were able to plant our Python reverse shell successfully on our target machine. Now, in a traditional firewall, if the access control list (ACL) was allowing the traffic to the outside, then we will get our shell back successfully. But if the firewall was doing reputation filtering, then what will happen is that once the client initiates a session back to our Kali machine and reaches the firewall, the firewall will do a lookup and check on the destination IP. Then, it checks whether the destination IP belongs to a malicious site. This checking is based on an IP pool, which is a list of an IP that the firewall will download...