You're reading from Windows and Linux Penetration Testing from Scratch Harness the power of pen testing with Kali Linux for unbeatable hard-hitting results

Product type Paperback

Published in Aug 2022

Publisher Packt

ISBN-13 9781801815123

Length 510 pages

Edition 2nd Edition

Languages

Scratch

Tools

Kali Linux

Concepts

Penetration Testing

Author (1):

Phil Bramwell

View More author details

Table of Contents (23) Chapters

Preface

1. Part 1: Recon and Exploitation

2. Chapter 1: Open Source Intelligence FREE CHAPTER

3. Chapter 2: Bypassing Network Access Control

4. Chapter 3: Sniffing and Spoofing

5. Chapter 4: Windows Passwords on the Network

6. Chapter 5: Assessing Network Security

7. Chapter 6: Cryptography and the Penetration Tester

8. Chapter 7: Advanced Exploitation with Metasploit

9. Part 2: Vulnerability Fundamentals

10. Chapter 8: Python Fundamentals

11. Chapter 9: PowerShell Fundamentals

12. Chapter 10: Shellcoding - The Stack

13. Chapter 11: Shellcoding – Bypassing Protections

14. Chapter 12: Shellcoding – Evading Antivirus

15. Chapter 13: Windows Kernel Security

16. Chapter 14: Fuzzing Techniques

17. Part 3: Post-Exploitation

18. Chapter 15: Going Beyond the Foothold

19. Chapter 16: Escalating Privileges

20. Chapter 17: Maintaining Access

21. Answers

22. Other Books You May Enjoy

Maintaining access with PowerSploit

The PowerSploit framework is a real treat for the post-exploitation phase. The framework consists of a goodie bag full of PowerShell scripts that do various bits of magic. A full exploration of PowerSploit is an exercise I leave to you, dear reader. For now, we’re checking out the persistence module.

Let’s understand the module concept first. Modules are essentially collections of PowerShell scripts that together form a cohesive theme or type of task. You can group tools together in a folder, dump that into the module path, and then import the group as needed. A well-written module integrates seamlessly with all of what makes PowerShell special. In particular, Get-Help works as expected with the scripts. Yes, you can run Get-Help on these malicious scripts to understand exactly how to use them. Let’s try it out.