Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Learn Penetration Testing Understand the art of penetration testing and develop your white hat hacker skills

Product type Paperback

Published in May 2019

Publisher Packt

ISBN-13 9781838640163

Length 424 pages

Edition 1st Edition

Tools

Kali Linux

Concepts

Penetration Testing

Author (1):

Rishalin Pillay

View More author details

Table of Contents (21) Chapters

Preface

1. Section 1: The Basics FREE CHAPTER

2. Introduction to Penetration Testing

3. Getting Started with Kali Linux

4. Section 2: Exploitation

5. Performing Information Gathering

6. Mastering Social Engineering

7. Diving into the Metasploit Framework

8. Understanding Password Attacks

9. Working with Burp Suite

10. Attacking Web Applications

11. Getting Started with Wireless Attacks

12. Section 3: Post Exploitation

13. Moving Laterally and Escalating Your Privileges

14. Antivirus Evasion

15. Maintaining Control within the Environment

16. Section 4: Putting It All Together

17. Reporting and Acting on Your Findings

18. Where Do I Go from Here?

19. Assessments

20. Other Books You May Enjoy

Leave a review - let other readers know what you think

Adding modules

Now that we have covered how to find modules for the Metasploit Framework, let's dive into adding a module. We will use the module that covers the exploit for Wordpress 5.0.0 — Crop-image Shell Upload (Metasploit). The direct link for this exploit is https://www.exploit-db.com/exploits/46662.

Before we download the exploit, we will verify that it does not exist currently in the Metasploit Framework. To do this, we can use the search command (see Figure 19). This command allows you to search for specific modules:

Figure 19: Searching for a module related to crop-image

Since there are no results, we will exit the Metasploit Framework and download the module to add it. Using the preceding direct link, you can use the download function to download the actual module, as shown in the following screenshot:

Figure 20: Downloading the exploit from Exploit-DB...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at €18.99/month. Cancel anytime

Authors (1)

Rishalin Pillay

Rishalin Pillay is an Offensive Cybersecurity expert who holds a number of awards and certifications from multiple companies in the Cybersecurity industry. He is well known for his contributions to online learning courses related to Red Teaming and as the author of Learn Penetration Testing. He holds Content Publisher Gold and Platinum awards for his contributions made towards the Cybersecurity Industry, including the Events Speaker Gold award for influential public speaking at Tier-1 business events.

See other products by Rishalin Pillay