Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Hands-On Web Penetration Testing with Metasploit
  • Table Of Contents Toc
Hands-On Web Penetration Testing with Metasploit

Hands-On Web Penetration Testing with Metasploit

By : Harpreet Singh, Himanshu Sharma
4 (2)
Buy this Book
close
close
Hands-On Web Penetration Testing with Metasploit

Hands-On Web Penetration Testing with Metasploit

4 (2)
By: Harpreet Singh, Himanshu Sharma
Buy this Book

Overview of this book

Metasploit has been a crucial security tool for many years. However, there are only a few modules that Metasploit has made available to the public for pentesting web applications. In this book, you'll explore another aspect of the framework – web applications – which is not commonly used. You'll also discover how Metasploit, when used with its inbuilt GUI, simplifies web application penetration testing. The book starts by focusing on the Metasploit setup, along with covering the life cycle of the penetration testing process. Then, you will explore Metasploit terminology and the web GUI, which is available in the Metasploit Community Edition. Next, the book will take you through pentesting popular content management systems such as Drupal, WordPress, and Joomla, which will also include studying the latest CVEs and understanding the root cause of vulnerability in detail. Later, you'll gain insights into the vulnerability assessment and exploitation of technological platforms such as JBoss, Jenkins, and Tomcat. Finally, you'll learn how to fuzz web applications to find logical security vulnerabilities using third-party tools. By the end of this book, you'll have a solid understanding of how to exploit and validate vulnerabilities by working with various tools and techniques.
Table of Contents (23 chapters)
close
close
close
Preface
Icon
Preface
Icon
Who this book is for
Icon
What this book covers
Icon
To get the most out of this book
Icon
Disclaimer
Icon
Get in touch
1
Introduction
Icon
Introduction
Lock Free Chapter
2
Introduction to Web Application Penetration Testing
Icon
Introduction to Web Application Penetration Testing
Icon
What is a penetration test?
Icon
Types of penetration test
Icon
Stages of penetration testing
Icon
Important terminologies
Icon
Penetration testing methodologies
Icon
Common Weakness Enumeration (CWE)
Icon
Summary
Icon
Questions
Icon
Further reading
3
Metasploit Essentials
Icon
Metasploit Essentials
Icon
Technical requirements
Icon
Introduction to Metasploit Framework
Icon
Metasploit Framework terminology
Icon
Installing and setting up Metasploit
Icon
Getting started with Metasploit Framework
Icon
Summary
Icon
Questions
Icon
Further reading
4
The Metasploit Web Interface
Icon
The Metasploit Web Interface
Icon
Technical requirements
Icon
Introduction to the Metasploit web interface
Icon
Installing and setting up the web interface
Icon
Getting started with the Metasploit web interface
Icon
Summary
Icon
Questions
Icon
Further reading
5
The Pentesting Life Cycle with Metasploit
Icon
The Pentesting Life Cycle with Metasploit
6
Using Metasploit for Reconnaissance
Icon
Using Metasploit for Reconnaissance
Icon
Technical requirements
Icon
Introduction to reconnaissance
Icon
Active reconnaissance
Icon
Passive reconnaissance
Icon
Summary
Icon
Questions
Icon
Further reading
7
Web Application Enumeration Using Metasploit
Icon
Web Application Enumeration Using Metasploit
Icon
Technical requirements
Icon
Introduction to enumeration
Icon
Enumerating files
Icon
Summary
Icon
Questions
Icon
Further reading
8
Vulnerability Scanning Using WMAP
Icon
Vulnerability Scanning Using WMAP
Icon
Technical requirements
Icon
Understanding WMAP
Icon
The WMAP scanning process
Icon
WMAP module execution order
Icon
Adding a module to WMAP
Icon
Clustered scanning using WMAP
Icon
Summary
Icon
Questions
Icon
Further reading
9
Vulnerability Assessment Using Metasploit (Nessus)
chevron up
Icon
Vulnerability Assessment Using Metasploit (Nessus)
Icon
Technical requirements
Icon
Introduction to Nessus
Icon
Basic commands
Icon
Performing a Nessus scan via Metasploit
Icon
Summary
Icon
Questions
Icon
Further reading
10
Pentesting Content Management Systems (CMSes)
Icon
Pentesting Content Management Systems (CMSes)
11
Pentesting CMSes - WordPress
Icon
Pentesting CMSes - WordPress
Icon
Technical requirements
Icon
Introduction to WordPress
Icon
WordPress reconnaissance and enumeration
Icon
Vulnerability assessment for WordPress
Icon
WordPress exploitation part 1 – WordPress Arbitrary File Deletion
Icon
WordPress exploitation part 2 – unauthenticated SQL injection
Icon
WordPress exploitation part 3 – WordPress 5.0.0 Remote Code Execution
Icon
Going the extra mile – customizing the Metasploit exploit
Icon
Summary
Icon
Questions
Icon
Further reading
12
Pentesting CMSes - Joomla
Icon
Pentesting CMSes - Joomla
Icon
Technical requirements
Icon
An introduction to Joomla
Icon
The Joomla architecture
Icon
Reconnaissance and enumeration
Icon
Enumerating Joomla plugins and modules using Metasploit
Icon
Performing vulnerability scanning with Joomla
Icon
Joomla exploitation using Metasploit
Icon
Joomla shell upload
Icon
Summary
Icon
Questions
Icon
Further reading
13
Pentesting CMSes - Drupal
Icon
Pentesting CMSes - Drupal
Icon
Technical requirements
Icon
Introduction to Drupal and its architecture
Icon
Drupal reconnaissance and enumeration
Icon
Drupal vulnerability scanning using droopescan
Icon
Exploiting Drupal
Icon
Summary
Icon
Questions
Icon
Further reading
14
Performing Pentesting on Technological Platforms
Icon
Performing Pentesting on Technological Platforms
15
Penetration Testing on Technological Platforms - JBoss
Icon
Penetration Testing on Technological Platforms - JBoss
Icon
Technical requirements
Icon
An introduction to JBoss
Icon
Reconnaissance and enumeration
Icon
Performing a vulnerability assessment on JBoss AS
Icon
JBoss exploitation
Icon
Summary
Icon
Questions
Icon
Further reading
16
Penetration Testing on Technological Platforms - Apache Tomcat
Icon
Penetration Testing on Technological Platforms - Apache Tomcat
Icon
Technical requirements
Icon
An introduction to Tomcat
Icon
The Apache Tomcat architecture
Icon
Files and their directory structures
Icon
Detecting Tomcat installations
Icon
Version detection
Icon
Exploiting Tomcat
Icon
An introduction to Apache Struts
Icon
Summary
Icon
Questions
Icon
Further reading
17
Penetration Testing on Technological Platforms - Jenkins
Icon
Penetration Testing on Technological Platforms - Jenkins
Icon
Technical requirements
Icon
Introduction to Jenkins
Icon
Jenkins terminology
Icon
Jenkins reconnaissance and enumeration
Icon
Exploiting Jenkins
Icon
Summary
Icon
Questions
Icon
Further reading
18
Logical Bug Hunting
Icon
Logical Bug Hunting
19
Web Application Fuzzing - Logical Bug Hunting
Icon
Web Application Fuzzing - Logical Bug Hunting
Icon
Technical requirements
Icon
What is fuzzing?
Icon
Fuzzing terminology
Icon
Fuzzing attack types
Icon
Introduction to web app fuzzing
Icon
Identifying web application attack vectors
Icon
Summary
Icon
Questions
Icon
Further reading
20
Writing Penetration Testing Reports
Icon
Writing Penetration Testing Reports
Icon
Technical requirements
Icon
Introduction to report writing
Icon
Introduction to Dradis Framework
Icon
Working with Serpico
Icon
Summary
Icon
Questions
Icon
Further reading
21
Assessment
Icon
Assessment
Icon
Chapter 1
Icon
Chapter 2
Icon
Chapter 3
Icon
Chapter 4
Icon
Chapter 5
Icon
Chapter 6
Icon
Chapter 7
Icon
Chapter 8
Icon
Chapter 9
Icon
Chapter 10
Icon
Chapter 11
Icon
Chapter 12
Icon
Chapter 13
Icon
Chapter 14
Icon
Chapter 15
22
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Leave a review - let other readers know what you think

Basic commands

Let's say we're working in an organization and we are provided with the credentials to access Nessus via the Metasploit terminal ONLY. In situations like these, it's always better to run some basic commands to understand what we can and cannot do. Let's have a look at these commands over the course of the following steps:

  1. The first command we can execute is nessus_server_properties in msfconsole. This command will give us the details regarding the scanner (Type, Version, UUID, and so on). Based on the type of scanner, we can set our scanning preferences, as shown here:
  1. The nessus_server_status command is used to confirm the status of the scanner so that we can determine whether it is ready. This is helpful in situations where the organization is using a cloud-based Nessus with distributed scanner agents. The output of the command is shown...
CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Hands-On Web Penetration Testing with Metasploit
End of Section 9
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist download Download options
font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon