Lyt når som helst, hvor som helst

Nyd den ubegrænsede adgang til tusindvis af spændende e- og lydbøger - helt gratis

  • Lyt og læs så meget du har lyst til
  • Opdag et kæmpe bibliotek fyldt med fortællinger
  • Eksklusive titler + Mofibo Originals
  • Opsig når som helst
Start tilbuddet
DK - Details page - Device banner - 894x1036

Mastering Kali Linux for Web Penetration Testing

Sprog
Engelsk
Format
Kategori

Fakta

Master the art of exploiting advanced web penetration techniques with Kali Linux 2016.2

About This Book

• Make the most out of advanced web pen-testing techniques using Kali Linux 2016.2

• Explore how Stored (a. k. a. Persistent) XSS attacks work and how to take advantage of them

• Learn to secure your application by performing advanced web based attacks.

• Bypass internet security to traverse from the web to a private network.

Who This Book Is For

This book targets IT pen testers, security consultants, and ethical hackers who want to expand their knowledge and gain expertise on advanced web penetration techniques. Prior knowledge of penetration testing would be beneficial.

What You Will Learn • Establish a fully-featured sandbox for test rehearsal and risk-free investigation of applications

• Enlist open-source information to get a head-start on enumerating account credentials, mapping potential dependencies, and discovering unintended backdoors and exposed information

• Map, scan, and spider web applications using nmap/zenmap, nikto, arachni, webscarab, w3af, and NetCat for more accurate characterization

• Proxy web transactions through tools such as Burp Suite, OWASP's ZAP tool, and Vega to uncover application weaknesses and manipulate responses

• Deploy SQL injection, cross-site scripting, Java vulnerabilities, and overflow attacks using Burp Suite, websploit, and SQLMap to test application robustness

• Evaluate and test identity, authentication, and authorization schemes and sniff out weak cryptography before the black hats do

In Detail

You will start by delving into some common web application architectures in use, both in private and public cloud instances. You will also learn about the most common frameworks for testing, such as OWASP OGT version 4, and how to use them to guide your efforts. In the next section, you will be introduced to web pentesting with core tools and you will also see how to make web applications more secure through rigorous penetration tests using advanced features in open source tools. The book will then show you how to better hone your web pentesting skills in safe environments that can ensure low-risk experimentation with the powerful tools and features in Kali Linux that go beyond a typical script-kiddie approach. After establishing how to test these powerful tools safely, you will understand how to better identify vulnerabilities, position and deploy exploits, compromise authentication and authorization, and test the resilience and exposure applications possess.

By the end of this book, you will be well-versed with the web service architecture to identify and evade various protection mechanisms that are used on the Web today. You will leave this book with a greater mastery of essential test techniques needed to verify the secure design, development, and operation of your customers' web applications.

Style and approach

An advanced-level guide filled with real-world examples that will help you take your web application's security to the next level by using Kali Linux 2016.2.

© 2017 Packt Publishing (E-bog): 9781784396213

Release date

E-bog: 28. juni 2017

Tags

    Andre kan også lide...

    1. Hacking the Hacker: Learn From the Experts Who Take Down Hackers Roger A. Grimes
    2. Social Engineering: The Science of Human Hacking 2nd Edition Christopher Hadnagy
    3. The Cybersecurity Playbook: How Every Leader and Employee Can Contribute to a Culture of Security Allison Cerra
    4. Cybersecurity For Dummies Joseph Steinberg
    5. The Pentester BluePrint: Starting a Career as an Ethical Hacker Phillip L. Wylie
    6. The Hacker and the State: Cyber Attacks and the New Normal of Geopolitics Ben Buchanan
    7. What is the Dark Web?: The truth about the hidden part of the internet Evan J. Rodgers
    8. Cyber Mayday and the Day After: A Leader's Guide to Preparing, Managing, and Recovering from Inevitable Business Disruptions Daniel Lohrmann
    9. Cyber Security: How to Protect Your Digital Life, Avoid Identity Theft, Prevent Extortion, and Secure Your Social Privacy in 2020 and beyond Matt Reyes
    10. Cybersecutity First Principles Rick Howard
    11. CISSP Exam Study Guide For Information Security Professionals: Beginners Guide To Cybersecurity Threats, Ethical Hacking And Defense Techniques 3 Books In 1 John Knowles
    12. The CISO Evolution: Business Knowledge for Cybersecurity Executives Kyriakos Lambros
    13. 8 Steps to Better Security: A Simple Cyber Resilience Guide for Business Kim Crawley
    14. Hacking Network Protocols: Complete Guide about Hacking, Scripting and Security of Computer Systems and Networks: Complete Guide about Hacking, Scripting and Security of Computer Systems and Networks. Hans Weber
    15. Certified Information Security Manager CISM Study Guide Mike Chapple, PhD, CISM
    16. A Vulnerable System: The History of Information Security in the Computer Age Andrew J. Stewart
    17. Project Zero Trust: A Story about a Strategy for Aligning Security and the Business George Finney
    18. Cryptography: The Key to Digital Security, How It Works, and Why It Matters Keith Martin
    19. If It's Smart, It's Vulnerable Mikko Hypponen
    20. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide 9th Edition Mike Chapple
    21. A Leader’s Guide to Cybersecurity: Why Boards Need to Lead-And How to Do It Jack J. Domet
    22. A Hacker's Mind: How the Powerful Bend Society's Rules, and How to Bend them Back Bruce Schneier
    23. Cybercrime Investigators Handbook Graeme Edwards
    24. Infrastructure Attack Strategies for Ethical Hacking Himanshu Sharma
    25. Cybersecurity and Cyberwar: What Everyone Needs to Know Allan Friedman
    26. Zero Trust Networks: Building Secure Systems in Untrusted Networks (2nd Edition) Christina Morillo
    27. The Art of Deception: Controlling the Human Element of Security William L. Simon
    28. Data and Goliath: The Hidden Battles to Collect Your Data and Control Your World Bruce Schneier
    29. Cybersecurity: Cybersecurity Essentials: Safeguarding Your Digital World Alex Foster
    30. The Cuckoo's Egg: Tracking a Spy Through the Maze of Computer Espionage Cliff Stoll
    31. Pegasus: The Story of the World's Most Dangerous Spyware Laurent Richard
    32. Ransomware Protection Playbook Roger A. Grimes
    33. The Language of Deception: Weaponizing Next Generation AI Justin Hutchens
    34. The Cyber-Elephant In The Boardroom: Cyber-Accountability With The Five Pillars Of Security Framework Mathieu Gorge
    35. Blockchain For Dummies Tiana Laurence
    36. The Security Culture Playbook: An Executive Guide To Reducing Risk and Developing Your Human Defense Layer Perry Carpenter
    37. Transformational Security Awareness: What Neuroscientists, Storytellers, and Marketers Can Teach Us About Driving Secure Behaviors Perry Carpenter
    38. Cybersecurity: Learn Fast how to Become an InfoSec Pro 3 Books in 1 John Knowles
    39. (ISC)2 CCSP Certified Cloud Security Professional Official Study Guide, 3rd Edition Mike Chapple
    40. Threats: What Every Engineer Should Learn From Star Wars Adam Shostack
    41. CompTIA Security+ All-in-One Exam Guide, Sixth Edition (Exam SY0-601) Wm. Arthur Conklin
    42. Hacking: A Quick and Simple Introduction to the Basics of Hacking, Scripting, Cybersecurity, Networking, and System Penetration Hans Weber
    43. CISSP Exam Study Guide For Cybersecurity Professionals: 2 Books In 1: Beginners Guide To Nist Cybersecurity Framework & Risk Management Governance Strategies HUGO HOFFMAN
    44. (ISC)2 CCSP Certified Cloud Security Professional Official Study Guide: 2nd Edition Ben Malisow
    45. How I Rob Banks: And Other Such Places FC

    Vælg dit abonnement

    • Over 600.000 titler

    • Download og nyd titler offline

    • Eksklusive titler + Mofibo Originals

    • Børnevenligt miljø (Kids Mode)

    • Det er nemt at opsige når som helst

    Flex

    For dig som vil prøve Mofibo.

    89 kr. /måned
    • 1 konto

    • 20 timer/måned

    • Gem op til 100 ubrugte timer

    • Eksklusivt indhold hver uge

    • Fri lytning til podcasts

    • Ingen binding

    Prøv gratis
    Den mest populære

    Premium

    For dig som lytter og læser ofte.

    129 kr. /måned
    • 1 konto

    • 100 timer/måned

    • Eksklusivt indhold hver uge

    • Fri lytning til podcasts

    • Ingen binding

    Start tilbuddet

    Unlimited

    For dig som lytter og læser ubegrænset.

    149 kr. /måned
    • 1 konto

    • Ubegrænset adgang

    • Eksklusivt indhold hver uge

    • Fri lytning til podcasts

    • Ingen binding

    Start tilbuddet

    Family

    For dig som ønsker at dele historier med familien.

    Fra 179 kr. /måned
    • 2-6 konti

    • 100 timer/måned pr. konto

    • Fri lytning til podcasts

    • Kun 39 kr. pr. ekstra konto

    • Ingen binding

    2 konti

    179 kr. /måned
    Prøv gratis