Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Applied Network Security Proven tactics to detect and defend against all kinds of network attack

Product type Paperback

Published in Apr 2017

Publisher

ISBN-13 9781786466273

Length 350 pages

Edition 1st Edition

Tools

Kali Linux

Concepts

Network Security

Authors (3):

Michael McLafferty

Warun Levesque

Arthur Salmon

View More author details

Table of Contents (18) Chapters

Preface

1. Introduction to Network Security FREE CHAPTER

2. Sniffing the Network

3. How to Crack Wi-Fi Passwords

4. Creating a RAT Using Msfvenom

5. Veil Framework

6. Social Engineering Toolkit and Browser Exploitation

7. Advanced Network Attacks

8. Passing and Cracking the Hash

9. SQL Injection

10. Scapy

11. Web Application Exploits

12. Evil Twins and Spoofing

13. Injectable Devices

14. The Internet of Things

15. Detection Systems

16. Advance Wireless Security Lab Using the Wi-Fi Pineapple Nano/Tetra

17. Offensive Security and Threat Hunting

What tools are used for web application penetration testing?

There are a variety of penetration testing tools that can be used to find vulnerabilities with web applications. The first tool we will discuss is called Vega. This tool is open source and helps find SQL and XSS vulnerabilities.

Vega is GUI-based and written in Java. It runs on Linux, Windows, and OSX. Subgraph created Vega. Some of the core modules include: Automated Crawler, Vulnerability Scanner, Consistent UI, Website Crawler, Intercepting Proxy, SSL MITM, Content Analysis, Customizable alerts. Another popular tool used for web application pen testing is called Arachni. This is a highly-rated tool and is considered one of the best to use. Arachni is built using the Ruby framework, which allows for high performance. An interesting feature of this tool is its ability to learn from HTTP responses it receives during the audit process. Some modules of this...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (3)

Michael McLafferty

Michael McLafferty has been researching on cyber security and applied ethical hacking for over 6 years. His interest in cyber security started in 2010. At the time, he was creating search engine optimization scripts for various small businesses. His clients would also ask him to secure their websites, which led him to find his passion in cyber security instead of search engine optimization. In 2012, he became a private cyber security consultant for both individuals and small businesses. He would provide network and endpoint security advice as well as social engineering awareness training to employees and individuals. He is also a paid cyber security researcher, sponsored by local businesses to further the advancement of cyber security methods and applied knowledge. He is the co-founder of an open society of ethical hackers that meets weekly to discuss and apply new cyber security skills. They have full access to both a lab and cutting-edge ethical hacking equipment, to develop new methods in offensive security. He is also an inventor. He and his business partner have patents pending on various cyber security tools and software. They continue with their research with great passion and drive. He is committed to reshaping and setting new standards in the world of cyber security. With the level of collaboration from his colleagues, he firmly believes that they can achieve this.

See other products by Michael McLafferty

Salmon

Arthur Salmon is a lead security professional for Rex Technology Services, Las Vegas, NV. He is the program director of a community college for their cyber security program. Arthur currently holds a master's degree in network and communication management focusing on security. He is also finishing up his dissertation for a PhD in information security assurance. He has over 80 IT certifications, including his VMware VCP, Cisco CCNP:RnS/CCDP, and numerous CCNAs (RnS, security, design, voice, and video collaborations to name a few). He also holds other certifications from vendors, such as Microsoft, CompTIA, Juniper, Six Sigma, EMC, ISC2, Encase, and so on. Currently, hes awaiting results for his exams for ISC2 CISSP, CEH, and forensic investigator. He has worked in the IT sector for over 15 years. He is currently working on writing and collaborating new books, articles, or any other learning material.

See other products by Salmon

Warun Levesque

Warun Levesque has worked for various technical companies and projects over the past five years in information technology and network security. He began his academic path back in 2011, where his focus centered around mobile application development and web application programming. During this time, he worked on the development of many guides and educational resources contributing to the cyber security community. Warun has also accepted various contracts including one from a major IT Corporation to provide technical support and guidance to set up network and assistance for businesses nationwide. For the past couple of years, he has taken the role of a consultant for various companies, including institutional support for cyber security related training and classes. He is also the cofounder of a community of ethical hackers where he continues to learn and develop both his skills and effective guides for offensive, defensive, and mitigation in cyber security.

See other products by Warun Levesque