Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Python for Offensive PenTest
  • Table Of Contents Toc
  • Feedback & Rating feedback
Python for Offensive PenTest

Python for Offensive PenTest

By : Khrais
3.4 (7)
Buy this Book
close
close
Python for Offensive PenTest

Python for Offensive PenTest

3.4 (7)
By: Khrais
Buy this Book

Overview of this book

Python is an easy-to-learn and cross-platform programming language that has unlimited third-party libraries. Plenty of open source hacking tools are written in Python, which can be easily integrated within your script. This book is packed with step-by-step instructions and working examples to make you a skilled penetration tester. It is divided into clear bite-sized chunks, so you can learn at your own pace and focus on the areas of most interest to you. This book will teach you how to code a reverse shell and build an anonymous shell. You will also learn how to hack passwords and perform a privilege escalation on Windows with practical examples. You will set up your own virtual hacking environment in VirtualBox, which will help you run multiple operating systems for your testing environment. By the end of this book, you will have learned how to code your own scripts and mastered ethical hacking from scratch.
Table of Contents (8 chapters)
close
close
close
Preface
Icon
Preface
Icon
Who this book is for
Icon
What this book covers
Icon
To get the most out of this book
Icon
Get in touch
Free Chapter
1
Warming up – Your First Antivirus-Free Persistence Shell
Icon
Warming up – Your First Antivirus-Free Persistence Shell
Icon
Preparing the attacker machine
Icon
Preparing the target machine
Icon
TCP reverse shell
Icon
HTTP reverse shell
Icon
Persistence
Icon
Tuning the connection attempts
Icon
Tips for preventing a shell breakdown
Icon
Countermeasures
Icon
Summary
2
Advanced Scriptable Shell
Icon
Advanced Scriptable Shell
Icon
Dynamic DNS
Icon
Interacting with Twitter
Icon
Replicating Metasploit's screen capturing
Icon
Replicating Metasploit searching for content
Icon
Integrating low-level port scanner
Icon
Summary
3
Password Hacking
Icon
Password Hacking
Icon
Antivirus free keylogger
Icon
Hijacking KeePass password manager
Icon
Man in the browser
Icon
Firefox API hooking with Immunity Debugger
Icon
Python in Firefox proof of concept (PoC)
Icon
Python in Firefox EXE
Icon
Dumping saved passwords out of Google Chrome
Icon
Submitting the recovered password over HTTP session
Icon
Password phishing – DNS poisoning
Icon
Facebook password phishing
Icon
Countermeasures
Icon
Summary
4
Catch Me If You Can!
Icon
Catch Me If You Can!
Icon
Bypassing host-based firewalls
Icon
Bypassing reputation filtering in next generation firewalls
Icon
Bypassing botnet filtering
Icon
Summary
5
Miscellaneous Fun in Windows
chevron up
Icon
Miscellaneous Fun in Windows
Icon
Privilege escalation – weak service file
Icon
Privilege escalation – preparing vulnerable software
Icon
Privilege escalation – backdooring legitimate windows service
Icon
Privilege escalation – creating a new admin account and covering the tracks
Icon
Summary
6
Abuse of Cryptography by Malware
Icon
Abuse of Cryptography by Malware
Icon
Introduction to encryption algorithms
Icon
Protecting your tunnel with AES – stream mode
Icon
Protecting your tunnel with RSA
Icon
Hybrid encryption key
Icon
Summary
7
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Leave a review - let other readers know what you think

Privilege escalation – backdooring legitimate windows service

In this section, we will code a malicious service file to replace the legitimate one. Now, in order to replace the service file, our new malicious service file should be able to communicate with Windows service control manager. For instance, when you manually Start, Stop, Pause, or Resume the service, the Windows service control manager will send a signal or order to the EXE service file and in return, the service file should usually obey the service control manager's order. If, for any reason, the service file or the EXE file did not understand that signal, then the service control manager will fail to start the service and you will get an error saying The service did not respond to the start or control request in a timely fashion.

Now, let's jump to the code:

# Python For Offensive PenTest

# Backdooring...

Unlock full access

Continue reading for free

A Packt free trial gives you instant online access to our library of over 7000 practical eBooks and videos, constantly updated with the latest in tech
Start a 7-day FREE trial
End of Section 4
Next Section

Create a Note

Modal Close icon
You need to login to use this feature.
notes
bookmark search playlist download
font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Delete Note

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Edit Note

Modal Close icon
Write a note (max 255 characters)
Cancel
Update Note

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY