You're reading from PowerShell for Penetration Testing Explore the capabilities of PowerShell for pentesters across multiple platforms

Product type Paperback

Published in May 2024

Publisher Packt

ISBN-13 9781835082454

Length 298 pages

Edition 1st Edition

Languages

PowerShell

Tools

PowerShell

Concepts

Penetration Testing

Author (1):

Dr. Andrew Blyth

View More author details

Table of Contents (23) Chapters

Preface

1. Part 1: Introduction to Penetration Testing and PowerShell FREE CHAPTER

2. Chapter 1: Introduction to Penetration Testing

3. Chapter 2: Programming Principles in PowerShell

4. Part 2: Identification and Exploitation

5. Chapter 3: Network Services and DNS

6. Chapter 4: Network Enumeration and Port Scanning

7. Chapter 5: The WEB, REST, and SOAP

8. Chapter 6: SMB, Active Directory, LDAP and Kerberos

9. Chapter 7: Databases: MySQL, PostgreSQL, and MSSQL

10. Chapter 8: Email Services: Exchange, SMTP, IMAP, and POP

11. Chapter 9: PowerShell and FTP, SFTP, SSH, and TFTP

12. Chapter 10: Brute Forcing in PowerShell

13. Chapter 11: PowerShell and Remote Control and Administration

14. Part 3: Penetration Testing on Azure and AWS cloud Environments

15. Chapter 12: Using PowerShell in Azure

16. Chapter 13: Using PowerShell in AWS

17. Part 4: Post Exploitation and Command and Control

18. Chapter 14: Command and Control

19. Chapter 15: Post-Exploitation in Microsoft Windows

20. Chapter 16: Post-Exploitation in Linux

21. Index

Why subscribe?

22. Other Books You May Enjoy

Networking in Azure

Our goal in this section is to describe how PowerShell can be used with Azure to perform network reconnaissance and profiling as part of a penetration test. Our goal is to use this information to construct a network map. Once we have a public IP address and name, we can start to use nslookup to explore the type of DNS services:

PS C:\> nslookup devtest.snowcapcyber.com
Server:          192.168.1.254
Address:    192.168.1.254#53
Non-authoritative answer:
devtest.snowcapcyber.com    canonical name = snowcapcyber.z13.web.core.windows.net.
snowcapcyber.z16.web.core.windows.net    canonical name = web.s768fd45.store.core.windows.net.
Name:    web.s768fd45.store.core.windows.net
Address: 52.239.123.45

From the analysis of the DNS names, we can identify the type of service. The following table lists the available DNS suffixes:

...

The rest of the chapter is locked

You're reading from PowerShell for Penetration Testing Explore the capabilities of PowerShell for pentesters across multiple platforms

Table of Contents (23) Chapters

Networking in Azure

Authors (1)

Personalised recommendations for you

You're reading from PowerShell for Penetration Testing Explore the capabilities of PowerShell for pentesters across multiple platforms

Table of Contents (23) Chapters

Networking in Azure

Unlock this book and the full library FREE for 7 days

Authors (1)

Personalised recommendations for you