Penetration testers simulate cyber attacks to find security weaknesses in networks, operating systems, and applications. Information security experts worldwide use penetration techniques to evaluate enterprise defenses.
InĀ Penetration Testing, security expert, researcher, and trainer Georgia Weidman introduces you to the core skills and techniques that every pentester needs. Using a virtual machineābased lab that includes Kali Linux and vulnerable operating systems, youāll run through a series of practical lessons with tools like Wireshark, Nmap, and Burp Suite. As you follow along with the labs and launch attacks, youāll experience the key stages of an actual assessmentāincluding information gathering, finding exploitable vulnerabilities, gaining access to systems, post exploitation, and more.
Learn how to:
āCrack passwords and wireless network keys with brute-forcing and wordlists
āTest web applications for vulnerabilities
āUse the Metasploit Framework to launch exploits and write your own Metasploit modules
āAutomate social-engineering attacks
āBypass antivirus software
āTurn access to one machine into total control of the enterprise in the post exploitation phase
Youāll even explore writing your own exploits. Then itās on to mobile hackingāWeidmanās particular area of researchāwith her tool, the Smartphone Pentest Framework.
With its collection of hands-on lessons that cover key tools and strategies,Ā Penetration TestingĀ is the introduction that every aspiring hacker needs.