Book Image

Hands-On Penetration Testing with Kali NetHunter

By : Glen D. Singh, Sean-Philip Oriyano
Book Image

Hands-On Penetration Testing with Kali NetHunter

By: Glen D. Singh, Sean-Philip Oriyano

Overview of this book

Kali NetHunter is a version of the popular and powerful Kali Linux pentesting platform, designed to be installed on mobile devices. Hands-On Penetration Testing with Kali NetHunter will teach you the components of NetHunter and how to install the software. You’ll also learn about the different tools included and how to optimize and use a package, obtain desired results, perform tests, and make your environment more secure. Starting with an introduction to Kali NetHunter, you will delve into different phases of the pentesting process. This book will show you how to build your penetration testing environment and set up your lab. You will gain insight into gathering intellectual data, exploiting vulnerable areas, and gaining control over target systems. As you progress through the book, you will explore the NetHunter tools available for exploiting wired and wireless devices. You will work through new ways to deploy existing tools designed to reduce the chances of detection. In the concluding chapters, you will discover tips and best practices for integrating security hardening into your Android ecosystem. By the end of this book, you will have learned to successfully use a mobile penetration testing device based on Kali NetHunter and Android to accomplish the same tasks you would traditionally, but in a smaller and more mobile form factor.
Table of Contents (19 chapters)
Title Page
Copyright and Credits
About Packt
Contributors
Preface
Index

Chapter 9. Avoiding Detection

Over the course of this book, we've discussed a lot of topics covering the phases of penetration testing, from information gathering for exploitation to cover our tracks. To execute a successful penetration test without the target’s security team being aware, you must be stealthy like a hacker.

Apart from detecting and exploiting vulnerabilities during a penetration test, organizations also use this type of service to test their existing security controls and detection rate.

As mentioned in Chapter 2, Understanding the Phases of the Pentesting Process, the blue team is responsible for the monitoring, detection, and mitigation of any security threats within a parent organization. If the blue team should fail to detect the activities of a penetration tester, this would mean two things: the penetration tester was extremely stealthy and the organization's security controls need some tweaking.

In this chapter, we will cover the following topics:

  • Stealth scanning
  • Using...