Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Hands-On Penetration Testing with Python
  • Table Of Contents Toc
Hands-On Penetration Testing with Python

Hands-On Penetration Testing with Python

By : Furqan Khan
3.7 (3)
Buy this Book
close
close
Hands-On Penetration Testing with Python

Hands-On Penetration Testing with Python

3.7 (3)
By: Furqan Khan
Buy this Book

Overview of this book

With the current technological and infrastructural shift, penetration testing is no longer a process-oriented activity. Modern-day penetration testing demands lots of automation and innovation; the only language that dominates all its peers is Python. Given the huge number of tools written in Python, and its popularity in the penetration testing space, this language has always been the first choice for penetration testers. Hands-On Penetration Testing with Python walks you through advanced Python programming constructs. Once you are familiar with the core concepts, you’ll explore the advanced uses of Python in the domain of penetration testing and optimization. You’ll then move on to understanding how Python, data science, and the cybersecurity ecosystem communicate with one another. In the concluding chapters, you’ll study exploit development, reverse engineering, and cybersecurity use cases that can be automated with Python. By the end of this book, you’ll have acquired adequate skills to leverage Python as a helpful tool to pentest and secure infrastructure, while also creating your own custom exploits.
Table of Contents (18 chapters)
close
close
close
Preface
Icon
Preface
Icon
Who this book is for
Icon
What this book covers
Icon
To get the most out of this book
Icon
Get in touch
Icon
Disclaimer
Lock Free Chapter
1
Introduction to Python
Icon
Introduction to Python
Icon
Technical requirements
Icon
Why Python?
Icon
Getting started
Icon
Python data types
Icon
Python operators
Icon
Summary
Icon
Questions
2
Building Python Scripts
Icon
Building Python Scripts
Icon
Technical requirements
Icon
Indentation
Icon
Conditional statements
Icon
Loops
Icon
Functions and methods in Python
Icon
Modules and packages
Icon
Generators and comprehensions
Icon
Summary
Icon
Questions
Icon
Further reading
3
Concept Handling
Icon
Concept Handling
Icon
Object-oriented programming in Python
Icon
Files, directories, and I/O access
Icon
Regular expressions in Python
Icon
Data manipulation and parsing with XML, JSON, and CSV data
Icon
Exception handling
Icon
Summary
Icon
Questions
Icon
Further reading
4
Advanced Python Modules
chevron up
Icon
Advanced Python Modules
Icon
Multitasking with threads
Icon
Multitasking with processes
Icon
Subprocesses
Icon
Socket programming basics
Icon
Reverse TCP shells with Python
Icon
Summary
Icon
Questions
Icon
Further reading
5
Vulnerability Scanner Python - Part 1
Icon
Vulnerability Scanner Python - Part 1
Icon
Introducing Nmap
Icon
Building a network scanner with Python
Icon
Summary
Icon
Questions
Icon
Further reading
6
Vulnerability Scanner Python - Part 2
Icon
Vulnerability Scanner Python - Part 2
Icon
Architectural overview
Icon
Usage [PTO-GUI]
Icon
Pausing and resuming scans
Icon
Reporting
Icon
Summary
Icon
Questions
Icon
Further reading
7
Machine Learning and Cybersecurity
Icon
Machine Learning and Cybersecurity
Icon
Machine Learning
Icon
Regression-based machine learning models
Icon
Classification models
Icon
Natural language processing
Icon
Summary
Icon
Questions
Icon
Further reading
8
Automating Web Application Scanning - Part 1
Icon
Automating Web Application Scanning - Part 1
Icon
Automating web application scanning with Burp Suite
Icon
Summary
Icon
Questions
Icon
Further reading
9
Automated Web Application Scanning - Part 2
Icon
Automated Web Application Scanning - Part 2
Icon
XSS
Icon
CSRF
Icon
Clickjacking
Icon
SSL stripping (missing HSTS header)
Icon
Summary
Icon
Questions
Icon
Further reading
10
Building a Custom Crawler
Icon
Building a Custom Crawler
Icon
Setup and installations
Icon
Getting started
Icon
Execution of code
Icon
Summary
Icon
Questions
Icon
Further reading
11
Reverse Engineering Linux Applications
Icon
Reverse Engineering Linux Applications
Icon
Debugger
Icon
Fuzzing Linux applications
Icon
Stack buffer overflow in Linux
Icon
String format vulnerabilities
Icon
Summary
Icon
Questions
Icon
Further reading
12
Reverse Engineering Windows Applications
Icon
Reverse Engineering Windows Applications
Icon
Debuggers
Icon
Fuzzing Windows applications
Icon
Exploiting buffer overflows in Windows
Icon
Summary
Icon
Questions
Icon
Further reading
13
Exploit Development
Icon
Exploit Development
Icon
Scripting exploits over web-based vulnerabilities
Icon
Developing a Metasploit module to exploit a network service
Icon
Encoding shell codes to avoid detection
Icon
Summary
Icon
Questions
Icon
Further reading
14
Cyber Threat Intelligence
Icon
Cyber Threat Intelligence
Icon
Introduction to cyber threat intelligence
Icon
Cyber threat intelligence platforms
Icon
Tools and API
Icon
Threat scoring
Icon
STIX and TAXII and external lookups
Icon
Summary
Icon
Questions
Icon
Further reading
15
Other Wonders of Python
Icon
Other Wonders of Python
Icon
Report parsers
Icon
Keylogger and exfiltration via sockets
Icon
Parsing Twitter tweets
Icon
Stealing browser passwords with Python
Icon
Python for antivirus-free persistence shells
Icon
Summary
Icon
Questions
Icon
Further reading
16
Assessments
Icon
Assessments
Icon
Chapter 1, Introduction to Python
Icon
Chapter 2, Building Python Scripts
Icon
Chapter 3, Concept Handling
Icon
Chapter 4, Advanced Python Modules
Icon
Chapter 5, Vulnerability Scanner Python - Part 1
Icon
Chapter 6, Vulnerability Scanner Python - Part 2
Icon
Chapter 7, Machine Learning and Cybersecurity
Icon
Chapter 8, Automating Web Application Scanning - Part 1
Icon
Chapter 9, Automating Web Application Scanning - Part 2
Icon
Chapter 10, Building a Custom Crawler
Icon
Chapter 11, Reverse Engineering Linux Applications
Icon
Chapter 12, Reverse Engineering Windows Applications
Icon
Chapter 13, Exploit Development
Icon
Chapter 14, Cyber Threat Intelligence
Icon
Chapter 15, Other Wonders of Python
17
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Leave a review - let other readers know what you think

Reverse TCP shells with Python

Now that we have understood the basics of subprocessing, multiprocessing, and so on, implementing a basic TCP reverse shell with Python is pretty straightforward. For this example, rev_tcp.py, we will be using the bash-based reverse TCP shell. In the later chapters of the book, we will see how to pass a reverse shell entirely with Python:

It should be noted that OS.dup2 is used to create a duplicate of a file descriptor in Python. The stdin is defined to be file descriptor 0, stdout is defined to be file descriptor 1, and stderr is defined to be file descriptor 2. The code line OS.dup2(s.fileno(),0) indicates that we should create a duplicate of stdin and redirect the traffic to the socket file, which happens to be on the localhost and port 1234 (where Netcat is listening). Finally, we invoke the shell in interactive mode and since we are not specifying...

Visually different images
CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Hands-On Penetration Testing with Python
End of Section 4
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist download Download options
font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon