We can deliver a penetration test using three different approaches. These approaches are white, black, and gray box testing techniques. White box testing is a testing procedure where the tester has complete knowledge of the system, and the client is willing to provide credentials, source codes, and other necessary information about the environment. Black box testing is a procedure where a tester has almost zero knowledge of the target. The gray box testing technique is a combination of white and black box techniques, where the tester has only a little or partial information on the environment being tested. We will perform a gray box test in the upcoming sections of this chapter, as it combines the best of both the techniques. A gray box test may or may not include OS details, web applications deployed, the type and...
The Complete Metasploit Guide
By :
The Complete Metasploit Guide
By:
Overview of this book
Most businesses today are driven by their IT infrastructure, and the tiniest crack in this IT network can bring down the entire business. Metasploit is a pentesting network that can validate your system by performing elaborate penetration tests using the Metasploit Framework to secure your infrastructure.
This Learning Path introduces you to the basic functionalities and applications of Metasploit. Throughout this book, you’ll learn different techniques for programming Metasploit modules to validate services such as databases, fingerprinting, and scanning. You’ll get to grips with post exploitation and write quick scripts to gather information from exploited systems. As you progress, you’ll delve into real-world scenarios where performing penetration tests are a challenge. With the help of these case studies, you’ll explore client-side attacks using Metasploit and a variety of scripts built on the Metasploit Framework.
By the end of this Learning Path, you’ll have the skills required to identify system vulnerabilities by using thorough testing.
This Learning Path includes content from the following Packt products:
Metasploit for Beginners by Sagar Rahalkar
Mastering Metasploit - Third Edition by Nipun Jaswal
Table of Contents (28 chapters)
Title Page
Copyright
About Packt
Preface
Free Chapter
Introduction to Metasploit and Supporting Tools
Setting up Your Environment
Metasploit Components and Environment Configuration
Information Gathering with Metasploit
Vulnerability Hunting with Metasploit
Client-side Attacks with Metasploit
Web Application Scanning with Metasploit
Antivirus Evasion and Anti-Forensics
Cyber Attack Management with Armitage
Extending Metasploit and Exploit Development
Approaching a Penetration Test Using Metasploit
Reinventing Metasploit
The Exploit Formulation Process
Porting Exploits
Testing Services with Metasploit
Virtual Test Grounds and Staging
Client-Side Exploitation
Metasploit Extended
Evasion with Metasploit
Metasploit for Secret Agents
Visualizing with Armitage
Tips and Tricks
Other Books You May Enjoy
Customer Reviews