Penetration Tester's Open Source Toolkit

Penetration testing a network requires a delicate balance of art and science. A penetration tester must be creative enough to think outside of the box to determine the best attack vector into his own network, and also be expert in using the literally hundreds of tools required to execute the plan. This book provides both the art and the science.

The authors of the book are expert penetration testers who have developed many of the leading pen testing tools; such as the Metasploit framework. The authors allow the reader “inside their heads” to unravel the mysteries of thins like identifying targets, enumerating hosts, application fingerprinting, cracking passwords, and attacking exposed vulnerabilities. Along the way, the authors provide an invaluable reference to the hundreds of tools included on the bootable-Linux CD for penetration testing.

* Covers both the methodology of penetration testing and all of the tools used by malicious hackers and penetration testers

* The book is authored by many of the tool developers themselves

* This is the only book that comes packaged with the "Auditor Security Collection"; a bootable Linux CD with over 300 of the most popular open source penetration testing tools

The 13 contributions in this book explain techniques for gathering reconnaissance on a company's IP addresses, the need for enumeration and scanning activities at the start of a penetration test, and tools for assessing vulnerabilities in a database or web server. The authors also show how to write and code NASL scripts that can be shared with other Nessus users, and use the Metasploit Framework as an exploitation platform. The CD-ROM contains the auditor security collection with 200 tools. Distributed in the U.S. by O'Reilly.
Annotation �2006 Book News, Inc., Portland, OR (booknews.com)

The 13 contributions in this book explain techniques for gathering reconnaissance on a company's IP addresses, the need for enumeration and scanning activities at the start of a penetration test, and tools for assessing vulnerabilities in a database or web server. The authors also show how to write and code NASL scripts that can be shared with other Nessus users, and use the Metasploit Framework as an exploitation platform. The CD-ROM contains the auditor security collection with 200 tools. Distributed in the U.S. by O'Reilly. Annotation ©2006 Book News, Inc., Portland, OR (booknews.com)

Jeremy Faircloth (Security+, CCNA, MCSE, MCP+I, A+) is a Senior Principal IT Technologist for Medtronic, Inc., where he and his team architect and maintain enterprise-wide client/server and Web-based technologies. He is a member of the Society for Technical Communication and frequently acts as a technical resource for other IT professionals through teaching and writing, using his expertise to help others expand their knowledge. As a systems engineer with over 19 years of real-world IT experience, he has become an expert in many areas including Web development, database administration, enterprise security, network design, large enterprise applications and project management. Jeremy is also a contributing author to over a dozen technical books covering a variety of topics.

Series Editor of the Jay Beale Open Source Security Series, lead developer of the Bastille project, Seattle, WA

Chapter 1. Know Your Target. Verify that the IP range or domain belongs to the correct target, perform basic reconnaissance and identify possible target user accounts. Chapter 2. Host Detection Chapter 3. Service Detection Chapter 4. Use port scan tool to enumerate open ports Chapter 5. Using "nmap" to perform a portscan Chapter 6. Using "scanrand" to perform a portscan Chapter 7. Results: List of open ports Chapter 8. Application Fingerprinting Chapter 9. Password Attacks Chapter 10. Exploiting Identified Vulnerabilities Chapter 11. Use exploit toolkits Chapter 12. Using "metasploit framework" to verify and exploit vulnerabilities. Chapter 13. "CGE" to exploit vulnerabilities in Cisco devices