You're reading from PowerShell for Penetration Testing Explore the capabilities of PowerShell for pentesters across multiple platforms

Product type Paperback

Published in May 2024

Publisher Packt

ISBN-13 9781835082454

Length 298 pages

Edition 1st Edition

Languages

PowerShell

Tools

PowerShell

Concepts

Penetration Testing

Author (1):

Dr. Andrew Blyth

View More author details

Table of Contents (23) Chapters

Preface

1. Part 1: Introduction to Penetration Testing and PowerShell FREE CHAPTER

2. Chapter 1: Introduction to Penetration Testing

3. Chapter 2: Programming Principles in PowerShell

4. Part 2: Identification and Exploitation

5. Chapter 3: Network Services and DNS

6. Chapter 4: Network Enumeration and Port Scanning

7. Chapter 5: The WEB, REST, and SOAP

8. Chapter 6: SMB, Active Directory, LDAP and Kerberos

9. Chapter 7: Databases: MySQL, PostgreSQL, and MSSQL

10. Chapter 8: Email Services: Exchange, SMTP, IMAP, and POP

11. Chapter 9: PowerShell and FTP, SFTP, SSH, and TFTP

12. Chapter 10: Brute Forcing in PowerShell

13. Chapter 11: PowerShell and Remote Control and Administration

14. Part 3: Penetration Testing on Azure and AWS cloud Environments

15. Chapter 12: Using PowerShell in Azure

16. Chapter 13: Using PowerShell in AWS

17. Part 4: Post Exploitation and Command and Control

18. Chapter 14: Command and Control

19. Chapter 15: Post-Exploitation in Microsoft Windows

20. Chapter 16: Post-Exploitation in Linux

21. Index

Why subscribe?

22. Other Books You May Enjoy

PowerShell and TFTP

PowerShell provides a set of libraries that can be used as part of a security test against a TFTP server. In particular, they allow us to perform identification, enumeration, and examine access controls.

Identifying the TFTP server

Use PowerShell to identify the TFTP server and its details, such as IP address and port:

Test-NetConnection -ComputerName tftp.snowcapcyber.com -Port 69

Enumerating a TFTP server configuration

Gather information about the TFTP server configuration, including allowed transfer modes and any restrictions:

Install-Module -Name PSFTP
Get-PSFTPConfiguration -ComputerName tftp.snowcapcyber.com

Verifying access controls for TFTP

Check access controls and permissions on the TFTP server:

Get-PSFTPFile -ComputerName tftp.snowcapcyber.com -Path "/"

We can use this to try and retrieve a series of files. We can place all of the files we want to try and retrieve from a TFTP server in a file and then loop through...