Preface

• Who this book is for
• What this book covers
• To get the most out of this book
• Download the color images
• Conventions used
• Disclaimer
• Share Your Thoughts

1. Section 1: Getting Started with Penetration Testing FREE CHAPTER

2. Chapter 1: Introduction to Ethical Hacking

• Identifying threat actors and their intent
• Understanding what matters to threat actors
• Discovering cybersecurity terminologies
• Exploring the need for penetration testing and its phases
• Understanding penetration testing approaches
• Exploring hacking phases
• Understanding the Cyber Kill Chain framework
• Summary
• Further reading

3. Chapter 2: Building a Penetration Testing Lab

• Technical requirements
• Understanding the lab overview and its technologies
• Setting up a hypervisor and virtually isolated networks
• Setting up and working with Kali Linux
• Deploying Metasploitable 2 as a target system
• Implementing Metasploitable 3 using Vagrant
• Setting up vulnerability web application systems
• Summary
• Further reading

4. Chapter 3: Setting Up for Advanced Hacking Techniques

• Technical requirements
• Building an AD red team lab
• Setting up a wireless penetration testing lab
• Summary
• Further reading

5. Section 2: Reconnaissance and Network Penetration Testing

6. Chapter 4: Reconnaissance and Footprinting

• Technical requirements
• Understanding the importance of reconnaissance
• Understanding passive information gathering
• Exploring open source intelligence
• Using OSINT strategies to gather intelligence
• Summary
• Further reading

7. Chapter 5: Exploring Active Information Gathering

• Technical requirements
• Understanding active reconnaissance
• Exploring Google hacking strategies
• Exploring DNS reconnaissance
• Enumerating subdomains
• Profiling websites using EyeWitness
• Exploring active scanning techniques
• Enumerating common network services
• Performing user enumeration through noisy authentication controls
• Finding data leaks in the cloud
• Summary
• Further reading

8. Chapter 6: Performing Vulnerability Assessments

• Technical requirements
• Nessus and its policies
• Vulnerability discovery using Nmap
• Working with Greenbone Vulnerability Manager
• Using web application scanners
• Summary
• Further reading

9. Chapter 7: Understanding Network Penetration Testing

• Technical requirements
• Introduction to network penetration testing
• Working with bind and reverse shells
• Antimalware evasion techniques
• Working with wireless adapters
• Managing and monitoring wireless modes
• Summary
• Further reading

10. Chapter 8: Performing Network Penetration Testing

• Technical requirements
• Discovering live systems
• Profiling a target system
• Exploring password-based attacks
• Identifying and exploiting vulnerable services
• Understanding watering hole attacks
• Further reading

11. Section 3: Red Teaming Techniques

12. Chapter 9: Advanced Network Penetration Testing — Post Exploitation

• Technical requirements
• Post-exploitation using Meterpreter
• Data encoding and exfiltration
• Understanding MITM and packet sniffing attacks
• Summary
• Further reading

13. Chapter 10: Working with Active Directory Attacks

• Technical requirements
• Understanding Active Directory
• Enumerating Active Directory
• Leveraging network-based trust
• Summary
• Further reading

14. Chapter 11: Advanced Active Directory Attacks

• Technical requirements
• Understanding Kerberos
• Abusing trust on IPv6 with Active Directory
• Attacking Active Directory
• Domain dominance and persistence
• Summary
• Further reading

15. Chapter 12: Delving into Command and Control Tactics

• Technical requirements
• Understanding C2
• Setting up C2 operations
• Post-exploitation using Empire
• Working with Starkiller
• Summary
• Further reading

16. Chapter 13: Advanced Wireless Penetration Testing

• Technical requirements
• Introduction to wireless networking
• Performing wireless reconnaissance
• Compromising WPA and WPA2 networks
• Performing AP-less attacks
• Exploiting enterprise wireless networks
• Creating a Wi-Fi honeypot
• Discovering WPA3 attacks
• Securing your wireless network
• Summary
• Further reading

17. Section 4: Social Engineering and Web Application Attacks

18. Chapter 14: Performing Client-Side Attacks – Social Engineering

• Technical requirements
• Fundamentals of social engineering
• Types of social engineering
• Defending against social engineering
• Planning for each type of social engineering attack
• Exploring social engineering tools and techniques
• Summary
• Further reading

19. Chapter 15: Understanding Website Application Security

• Technical requirements
• Understanding web applications
• Exploring the OWASP Top 10: 2021
• Getting started with FoxyProxy and Burp Suite
• Understanding injection-based attacks
• Exploring broken access control attacks
• Discovering cryptographic failures
• Understanding insecure design
• Exploring security misconfiguration
• Summary
• Further reading

20. Chapter 16: Advanced Website Penetration Testing

• Technical requirements
• Identifying vulnerable and outdated components
• Exploiting identification and authentication failures
• Understanding software and data integrity failures
• Understanding security logging and monitoring failures
• Performing server-side request forgery
• Automating SQL injection attacks
• Understanding cross-site scripting
• Performing client-side attacks
• Summary
• Further reading

21. Chapter 17: Best Practices for the Real World

• Technical requirements
• Guidelines for penetration testers
• Penetration testing checklist
• Creating a hacker's tool bag
• Setting up remote access
• Next steps ahead
• Summary
• Further reading
• Why subscribe?

22. Other Books You May Enjoy

• Packt is searching for authors like you
• Share Your Thoughts