Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Mastering Metasploit Take your penetration testing and IT security skills to a whole new level with the secrets of Metasploit

Product type Paperback

Published in May 2018

Publisher Packt

ISBN-13 9781788990615

Length 492 pages

Edition 3rd Edition

Languages

Python

Tools

Metasploit

Concepts

Penetration Testing

Author (1):

Nipun Jaswal

View More author details

Table of Contents (14) Chapters

Preface

1. Approaching a Penetration Test Using Metasploit

2. Reinventing Metasploit FREE CHAPTER

3. The Exploit Formulation Process

4. Porting Exploits

5. Testing Services with Metasploit

6. Virtual Test Grounds and Staging

7. Client-Side Exploitation

8. Metasploit Extended

9. Evasion with Metasploit

10. Metasploit for Secret Agents

11. Visualizing with Armitage

12. Tips and Tricks

13. Other Books You May Enjoy

Leave a review - let other readers know what you think

Other protection mechanisms

Throughout this chapter, we developed exploits based on stack-based vulnerabilities and in our journey of exploitation, we bypassed SEH and DEP protection mechanisms. There are many more protection techniques, such as Address Space Layout Randomization (ASLR), stack cookies, SafeSEH, SEHOP, and many others. We will see bypass techniques for these techniques in the upcoming sections of the book. However, these techniques will require an excellent understanding of assembly, opcodes, and debugging.

Refer to an excellent tutorial on bypassing protection mechanisms at: https://www.corelan.be/index.php/2009/09/21/exploit-writing-tutorial-part-6-bypassing-stack-cookies-safeseh-hw-dep-and-aslr/.

For more information on debugging, refer to: http://resources.infosecinstitute.com/debugging-fundamentals-for-exploit-development/.

...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (1)

Nipun Jaswal

Nipun Jaswal is an international cybersecurity author and an award-winning IT security researcher with more than a decade of experience in penetration testing, Red Team assessments, vulnerability research, RF, and wireless hacking. He is presently the Director of Cybersecurity Practices at BDO India. Nipun has trained and worked with multiple law enforcement agencies on vulnerability research and exploit development. He has also authored numerous articles and exploits that can be found on popular security databases, such as PacketStorm and exploit-db. Please feel free to contact him at @nipunjaswal.

See other products by Nipun Jaswal