You're reading from Mastering Kali Linux for Advanced Penetration Testing – Fourth Edition Become a cybersecurity ethical hacking expert using Metasploit, Nmap, Wireshark, and Burp Suite

Product type Paperback

Published in Feb 2022

Publisher Packt

ISBN-13 9781801819770

Length 572 pages

Edition 4th Edition

Languages

PowerShell

Tools

Burp Suite

Concepts

Cybersecurity

Author (1):

Vijay Kumar Velu

View More author details

Table of Contents (17) Chapters

Preface

1. Goal-Based Penetration Testing FREE CHAPTER

2. Open-Source Intelligence and Passive Reconnaissance

3. Active Reconnaissance of External and Internal Networks

4. Vulnerability Assessment

5. Advanced Social Engineering and Physical Security

6. Wireless and Bluetooth Attacks

7. Exploiting Web-Based Applications

8. Cloud Security Exploitation

9. Bypassing Security Controls

10. Exploitation

11. Action on the Objective and Lateral Movement

12. Privilege Escalations

13. Command and Control

14. Embedded Devices and RFID Hacking

15. Other Books You May Enjoy

16. Index

Summary

In this chapter, we looked at the different threat actors and their motivations, along with certain methodologies and goal-based penetration testing that help organizations to test themselves against real-time attacks. We learned how penetration testers can use Kali Linux on different platforms to assess the security of data systems and networks. We have taken a quick look at how to install Kali on different virtualized and cloud platforms and ran a Kali Linux operating system Docker image, along with one on a non-rooted Android phone.

We built our own verification lab, set up Active Directory Domain Services, along with an Exchange Server instance, and two VMs on the same network, one of which is hosting a vulnerable web application. Most importantly, we learned how to customize Kali to increase the security of our tools and the data that they collect. We’re working to achieve the goal of making tools support our process instead of the other way around!

In the next chapter, we will learn how we can effectively master Open-Source Intelligence (OSINT) in this era to identify the weak attack surfaces of our target and create customized username and password lists to facilitate more focused attacks, extracting these details from the dark web, along with other methods.