Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Learn Penetration Testing Understand the art of penetration testing and develop your white hat hacker skills

Product type Paperback

Published in May 2019

Publisher Packt

ISBN-13 9781838640163

Length 424 pages

Edition 1st Edition

Tools

Kali Linux

Concepts

Penetration Testing

Author (1):

Rishalin Pillay

View More author details

Table of Contents (21) Chapters

Preface

1. Section 1: The Basics FREE CHAPTER

2. Introduction to Penetration Testing

3. Getting Started with Kali Linux

4. Section 2: Exploitation

5. Performing Information Gathering

6. Mastering Social Engineering

7. Diving into the Metasploit Framework

8. Understanding Password Attacks

9. Working with Burp Suite

10. Attacking Web Applications

11. Getting Started with Wireless Attacks

12. Section 3: Post Exploitation

13. Moving Laterally and Escalating Your Privileges

14. Antivirus Evasion

15. Maintaining Control within the Environment

16. Section 4: Putting It All Together

17. Reporting and Acting on Your Findings

18. Where Do I Go from Here?

19. Assessments

20. Other Books You May Enjoy

Leave a review - let other readers know what you think

Working with MSFvenom

Earlier in this chapter, we focused on using the Metasploit Framework to exploit a vulnerability on a target system and take control of it. With MSFvenom, instead of relying on a vulnerability in the system, you are aiming to exploit the most common security issue in all organizations: users. This is a vulnerability that can never be fully patched.

MSFvenom is essentially used to build shellcode. Shellcode can be defined as code that, when it is run, creates a reverse remote shell back to the attacker.

Shellcode can be used by inserting it into a file and then sending that file off to your target. This can be done using a phishing campaign, as we learned in Chapter 4, Mastering Social Engineering. Once the file is run, you can obtain remote access to the target's computer. Real-world attackers leverage this technique too. Shellcode is not only limited...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (1)

Rishalin Pillay

Rishalin Pillay is an Offensive Cybersecurity expert who holds a number of awards and certifications from multiple companies in the Cybersecurity industry. He is well known for his contributions to online learning courses related to Red Teaming and as the author of Learn Penetration Testing. He holds Content Publisher Gold and Platinum awards for his contributions made towards the Cybersecurity Industry, including the Events Speaker Gold award for influential public speaking at Tier-1 business events.

See other products by Rishalin Pillay