You're reading from Windows and Linux Penetration Testing from Scratch Harness the power of pen testing with Kali Linux for unbeatable hard-hitting results

Product type Paperback

Published in Aug 2022

Publisher Packt

ISBN-13 9781801815123

Length 510 pages

Edition 2nd Edition

Languages

Scratch

Tools

Kali Linux

Concepts

Penetration Testing

Author (1):

Phil Bramwell

View More author details

Table of Contents (23) Chapters

Preface

1. Part 1: Recon and Exploitation

2. Chapter 1: Open Source Intelligence FREE CHAPTER

3. Chapter 2: Bypassing Network Access Control

4. Chapter 3: Sniffing and Spoofing

5. Chapter 4: Windows Passwords on the Network

6. Chapter 5: Assessing Network Security

7. Chapter 6: Cryptography and the Penetration Tester

8. Chapter 7: Advanced Exploitation with Metasploit

9. Part 2: Vulnerability Fundamentals

10. Chapter 8: Python Fundamentals

11. Chapter 9: PowerShell Fundamentals

12. Chapter 10: Shellcoding - The Stack

13. Chapter 11: Shellcoding – Bypassing Protections

14. Chapter 12: Shellcoding – Evading Antivirus

15. Chapter 13: Windows Kernel Security

16. Chapter 14: Fuzzing Techniques

17. Part 3: Post-Exploitation

18. Chapter 15: Going Beyond the Foothold

19. Chapter 16: Escalating Privileges

20. Chapter 17: Maintaining Access

21. Answers

22. Other Books You May Enjoy

Python and Scapy – a classy pair

The romance between Python and Scapy was introduced in the second chapter—hey, I couldn’t wait. As a reminder, Scapy is a packet manipulation tool. We often see especially handy tools described as the Swiss Army knife of a certain task; if that’s the case, then Scapy is a surgical scalpel. It’s also, specifically, a Python program, so we can import its power into our scripts. You could write your own network pen testing tool in Python, and I mean any tool; you could replace Nmap, netcat, p0f, hping, and even something such as arpspoof. Let’s take a look at what it takes to create an Address Resolution Protocol (ARP) poisoning attack tool with Python and Scapy.

Revisiting ARP poisoning with Python and Scapy

Let’s take a look at constructing a layer 2 ARP poisoning attack from the bottom up. As before, the code here is a skeleton; with some clever Python wrapped around it, you have the potential to...