Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Network Vulnerability Assessment Identify security loopholes in your network's infrastructure

Product type Paperback

Published in Aug 2018

Publisher

ISBN-13 9781788627252

Length 254 pages

Edition 1st Edition

Tools

Kali Linux

Concepts

Network Security

Author (1):

Sagar Rahalkar

View More author details

Table of Contents (15) Chapters

Preface

1. Vulnerability Management Governance FREE CHAPTER

2. Setting Up the Assessment Environment

3. Security Assessment Prerequisites

4. Information Gathering

5. Enumeration and Vulnerability Assessment

6. Gaining Network Access

7. Assessing Web Application Security

8. Privilege Escalation

9. Maintaining Access and Clearing Tracks

10. Vulnerability Scoring

11. Threat Modeling

12. Patching and Security Hardening

13. Vulnerability Reporting and Metrics

14. Other Books You May Enjoy

Leave a review - let other readers know what you think

Privilege escalation on Linux

In this section, we'll see how we can exploit a vulnerability in a Linux system and then escalate our privileges. We'll be using Metasploitable 2 as our target.

Before we can even think of privilege escalation, we must have at least normal-level access to the target system. In this case, our target system's IP address is 192.168.25.129. We start by initiating SPARTA in order to gather some quick information about our target. We add the target IP in the scope of the SPARTA scan, as shown in the following screenshot:

Once the SPARTA scan is complete, we get to know what services are running on our target system. Now we find out that the target system is running one service, distccd (as shown in the following screenshot), that is a distributed computing application used for source-code compilation:

Now that we know the service to be...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (1)

Rahalkar

Sagar Rahalkar is a seasoned information security professional having more than 10 years of comprehensive experience in various verticals of IS. His domain expertise is mainly into breach detection, cyber crime investigations, digital forensics, application security, vulnerability assessment and penetration testing, compliance for mandates and regulations, IT GRC, and much more. He holds a masters degree in computer science and several industry-recognized certifications such as Certified Cyber Crime Investigator, Certified Ethical Hacker, Certified Security Analyst, ISO 27001 Lead Auditor, IBM certified Specialist-Rational AppScan, Certified Information Security Manager (CISM), and PRINCE2. He has been closely associated with Indian law enforcement agencies for more than 3 years dealing with digital crime investigations and related training and received several awards and appreciations from senior officials of the police and defense organizations in India. Sagar has also been a reviewer and author for various books and online publications.

See other products by Rahalkar