Book description
Discover the next level of network defense and penetration testing with the Metasploit 5.0 framework
Key Features
- Make your network robust and resilient with this updated edition covering the latest pentesting techniques
- Explore a variety of entry points to compromise a system while remaining undetected
- Enhance your ethical hacking skills by performing penetration tests in highly secure environments
Book Description
Updated for the latest version of Metasploit, this book will prepare you to face everyday cyberattacks by simulating real-world scenarios. Complete with step-by-step explanations of essential concepts and practical examples, Mastering Metasploit will help you gain insights into programming Metasploit modules and carrying out exploitation, as well as building and porting various kinds of exploits in Metasploit.
Giving you the ability to perform tests on different services, including databases, IoT, and mobile, this Metasploit book will help you get to grips with real-world, sophisticated scenarios where performing penetration tests is a challenge. You'll then learn a variety of methods and techniques to evade security controls deployed at a target's endpoint. As you advance, you'll script automated attacks using CORTANA and Armitage to aid penetration testing by developing virtual bots and discover how you can add custom functionalities in Armitage. Following real-world case studies, this book will take you on a journey through client-side attacks using Metasploit and various scripts built on the Metasploit 5.0 framework.
By the end of the book, you'll have developed the skills you need to work confidently with efficient exploitation techniques
What you will learn
- Develop advanced and sophisticated auxiliary, exploitation, and post-exploitation modules
- Learn to script automated attacks using CORTANA
- Test services such as databases, SCADA, VoIP, and mobile devices
- Attack the client side with highly advanced pentesting techniques
- Bypass modern protection mechanisms, such as antivirus, IDS, and firewalls
- Import public exploits to the Metasploit Framework
- Leverage C and Python programming to effectively evade endpoint protection
Who this book is for
If you are a professional penetration tester, security engineer, or law enforcement analyst with basic knowledge of Metasploit, this book will help you to master the Metasploit framework and guide you in developing your exploit and module development skills. Researchers looking to add their custom functionalities to Metasploit will find this book useful. As Mastering Metasploit covers Ruby programming and attack scripting using Cortana, practical knowledge of Ruby and Cortana is required.
Table of contents
- Mastering Metasploit
- Fourth Edition
- Why subscribe?
- Contributors
- About the author
- About the reviewers
- Packt is searching for authors like you
- Preface
- Section 1 – Preparation and Development
- Chapter 1: Approaching a Penetration Test Using Metasploit
- Chapter 2: Reinventing Metasploit
- Chapter 3: The Exploit Formulation Process
- Chapter 4: Porting Exploits
- Section 2 – The Attack Phase
- Chapter 5: Testing Services with Metasploit
- Chapter 6: Virtual Test Grounds and Staging
- Chapter 7: Client-Side Exploitation
- Section 3 – Post-Exploitation and Evasion
- Chapter 8: Metasploit Extended
- Chapter 9: Evasion with Metasploit
- Chapter 10: Metasploit for Secret Agents
- Chapter 11: Visualizing Metasploit
-
Chapter 12: Tips and Tricks
- Technical requirements
- Automation using the Minion script
- Using connect instead of Netcat
- Shell upgrades and background sessions
- Naming conventions
- Saving configurations in Metasploit
- Using inline handler and renaming jobs
- Running commands on multiple Meterpreters
- Automating the Social Engineering Toolkit
- Cheat sheets for Metasploit and penetration testing
- Summary
- Further reading
- Other Books You May Enjoy
Product information
- Title: Mastering Metasploit - Fourth Edition
- Author(s):
- Release date: June 2020
- Publisher(s): Packt Publishing
- ISBN: 9781838980078
You might also like
book
Mastering Metasploit - Third Edition
Discover the next level of network defense with the Metasploit frameworkAbout This Book Gain the skills …
book
Mastering Kali Linux for Advanced Penetration Testing - Third Edition
A practical guide to testing your infrastructure security with Kali Linux, the preferred choice of pentesters …
book
Mastering Kali Linux for Advanced Penetration Testing - Fourth Edition
Master key approaches used by real attackers to perform advanced pentesting in tightly secured infrastructure, cloud …
book
Mastering Wireshark 2
Use Wireshark 2 to overcome real-world network problems About This Book Delve into the core functionalities …