Python Penetration Testing Cookbook: Practical recipes on implementing information gathering,network security,intrusion detection,and post-exploitation
by: Rejah Rehim
ISBN-10: 1784399779
ISBN-13: 9781784399771
Released: 2017-11-28
Pages: 226
Book Description
Penetration testing is the use of tools and code to attack a system in order to assess its vulnerabilities to external threats. Python allows pen testers to create their own tools. Since Python is a highly valued pen-testing language,there are many native libraries and Python bindings available specifically for pen-testing tasks.
Python Penetration Testing Cookbook begins by teaching you how to extract information from web pages. You will learn how to build an intrusion detection system using network sniffing techniques. Next,you will find out how to scan your networks to ensure performance and quality,and how to carry out wireless pen testing on your network to avoid cyber attacks. After that,we’ll discuss the different kinds of network attack. Next,you’ll get to grips with designing your own torrent detection program. We’ll take you through common vulnerability scenarios and then cover buffer overflow exploitation so you can detect insecure coding. Finally,you’ll master PE code injection methods to safeguard your network.
Contents
1: WHY PYTHON IN PENETRATION TESTING?
2: SETTING UP A PYTHON ENVIRONMENT
3: WEB SCRAPING WITH PYTHON
4: DATA PARSING WITH PYTHON
5: WEB SCRAPING WITH SCRAPY AND BEAUTIFULSOUP
6: NETWORK SCANNING WITH PYTHON
7: NETWORK SNIFFING WITH PYTHON
8: SCAPY BASICS
9: WI-FI SNIFFING
10: LAYER 2 ATTACKS
11: TCP/IP ATTACKS
12: INTRODUCTION TO EXPLOIT DEVELOPMENT
13: WINDOWS EXPLOIT DEVELOPMENT
14: LINUX EXPLOIT DEVELOPMENT
What You Will Learn
Learn to configure Python in different environment setups.
Find an IP address from a web page using BeautifulSoup and Scrapy
Discover different types of packet sniffing script to sniff network packets
Master layer-2 and TCP/ IP attacks
Master techniques for exploit development for Windows and Linux
Incorporate various network- and packet-sniffing techniques using Raw sockets and Scrapy
Authors
Rejah Rehim
Rejah Rehim is currently a security architect with FAYA India and is a long-time preacher of open source. He is a steady contributor to the Mozilla Foundation,and his name has been featured on the San Francisco Monument made by the Mozilla Foundation.
He is a part of the Mozilla add-on review board and has contributed to the development of several node modules. He has to his credit the creation of eight Mozilla add-ons,including the highly successful Clear Console add-on,which was selected as one of the best Mozilla add-ons of 2013. With a user base of more than 44,000,it has registered more than 6,90,000 downloads to date. He has successfully created the world’s first,one-of-a-kind security testing browser bundle,PenQ,an open source Linux-based penetration testing browser bundle preconfigured with tools for spidering,advanced web searching,fingerprinting,and so on.
Rejah is also an active member of OWASP and is the chapter leader of OWASP Kerala. He is also an active speaker at FAYA: 80,one of the premier monthly tech rendezvous in Technopark,Kerala. Besides being a part of the cyber security division of FAYA currently and QBurst in the past,Rejah is also a fan of process automation and has implemented it in FAYA. In addition to these,Rejah also volunteers with Cyberdome,an initiative of the Kerala police department,as Deputy Commander.