You're reading from Bash Shell Scripting for Pentesters Master the art of command-line exploitation and enhance your penetration testing workflows

Product type Paperback

Published in Dec 2024

Publisher Packt

ISBN-13 9781835880821

Length 402 pages

Edition 1st Edition

Concepts

Cybersecurity

Author (1):

Steve Campbell

View More author details

Table of Contents (22) Chapters

Preface

1. Part 1: Getting Started with Bash Shell Scripting

2. Chapter 1: Bash Command-Line and Its Hacking Environment FREE CHAPTER

3. Chapter 2: File and Directory Management

4. Chapter 3: Variables, Conditionals, Loops, and Arrays

5. Chapter 4: Regular Expressions

6. Chapter 5: Functions and Script Organization

7. Chapter 6: Bash Networking

8. Chapter 7: Parallel Processing

9. Part 2: Bash Scripting for Pentesting

10. Chapter 8: Reconnaissance and Information Gathering

11. Chapter 9: Web Application Pentesting with Bash

12. Chapter 10: Network and Infrastructure Pentesting with Bash

13. Chapter 11: Privilege Escalation in the Bash Shell

14. Chapter 12: Persistence and Pivoting

15. Chapter 13: Pentest Reporting with Bash

16. Part 3: Advanced Applications of Bash Scripting for Pentesting

17. Chapter 14: Evasion and Obfuscation

18. Chapter 15: Interfacing with Artificial Intelligence

19. Chapter 16: DevSecOps for Pentesters

20. Index

Why subscribe?

21. Other Books You May Enjoy

Infrastructure vulnerability assessment with Bash

Assessing infrastructure vulnerabilities is a critical step in maintaining network security. With Bash, we can leverage powerful tools to automate network host discovery and vulnerability scanning, streamlining the assessment process. This section covers two essential techniques: identifying network hosts with NetExec and automating vulnerability scans using Greenbone. Each technique offers a practical approach to improving your security posture by reducing manual effort while enhancing efficiency and accuracy in detecting vulnerabilities.

Enumerating network hosts with NetExec

Starting from an unauthenticated perspective, we will examine TCP port 445 since it’s historically had a lot of vulnerabilities and can yield a lot of information. We will use the NetExec tool to enumerate network hosts.

First, let’s attempt to use an SMB null session to enumerate SMB shares. Run the following command, replacing the network...