Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Mastering Metasploit
  • Table Of Contents Toc
  • Feedback & Rating feedback
Mastering Metasploit

Mastering Metasploit

By : Nipun Jaswal
3.5 (4)
Buy this Book
close
close
Mastering Metasploit

Mastering Metasploit

3.5 (4)
By: Nipun Jaswal
Buy this Book

Overview of this book

Updated for the latest version of Metasploit, this book will prepare you to face everyday cyberattacks by simulating real-world scenarios. Complete with step-by-step explanations of essential concepts and practical examples, Mastering Metasploit will help you gain insights into programming Metasploit modules and carrying out exploitation, as well as building and porting various kinds of exploits in Metasploit. Giving you the ability to perform tests on different services, including databases, IoT, and mobile, this Metasploit book will help you get to grips with real-world, sophisticated scenarios where performing penetration tests is a challenge. You'll then learn a variety of methods and techniques to evade security controls deployed at a target's endpoint. As you advance, you’ll script automated attacks using CORTANA and Armitage to aid penetration testing by developing virtual bots and discover how you can add custom functionalities in Armitage. Following real-world case studies, this book will take you on a journey through client-side attacks using Metasploit and various scripts built on the Metasploit 5.0 framework. By the end of the book, you’ll have developed the skills you need to work confidently with efficient exploitation techniques
Table of Contents (17 chapters)
close
close
close
Preface
chevron up
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the example code files
Download the color images
Conventions used
Get in touch
Reviews
1
Section 1 – Preparation and Development
Section 1 – Preparation and Development
Free Chapter
2
Chapter 1: Approaching a Penetration Test Using Metasploit
Chapter 1: Approaching a Penetration Test Using Metasploit
Technical requirements
Organizing a penetration test
Mounting the environment
The fundamentals of Metasploit
Conducting a penetration test with Metasploit
Benefits of penetration testing using Metasploit
Case study – reaching the domain controller
Revisiting the case study
Summary
3
Chapter 2: Reinventing Metasploit
Chapter 2: Reinventing Metasploit
Technical requirements
Ruby – the heart of Metasploit
Understanding Metasploit modules
Developing an auxiliary – the FTP scanner module
Developing an auxiliary—the SSH brute force module
Developing post-exploitation modules
Post-exploitation with RailGun
Summary
4
Chapter 3: The Exploit Formulation Process
Chapter 3: The Exploit Formulation Process
Technical requirements
The absolute basics of exploitation
Exploiting a stack overflow vulnerability with Metasploit
Exploiting SEH-based buffer overflows with Metasploit
Bypassing DEP in Metasploit modules
Other protection mechanisms
Summary
5
Chapter 4: Porting Exploits
Chapter 4: Porting Exploits
Technical requirements
Importing a stack-based buffer overflow exploit
Importing a web-based RCE exploit into Metasploit
Importing TCP server/browser-based exploits into Metasploit
Summary
6
Section 2 – The Attack Phase
Section 2 – The Attack Phase
7
Chapter 5: Testing Services with Metasploit
Chapter 5: Testing Services with Metasploit
Technical requirements
The fundamentals of testing SCADA systems
Database exploitation
Testing VOIP services
Summary
8
Chapter 6: Virtual Test Grounds and Staging
Chapter 6: Virtual Test Grounds and Staging
Technical requirements
Performing a penetration test with integrated Metasploit services
Generating manual reports
Summary
9
Chapter 7: Client-Side Exploitation
Chapter 7: Client-Side Exploitation
Technical requirements
Exploiting browsers for fun and profit
Compromising the clients of a website
Metasploit and Arduino – the deadly combination
File format-based exploitation
Attacking Android with Metasploit
Summary
10
Section 3 – Post-Exploitation and Evasion
Section 3 – Post-Exploitation and Evasion
11
Chapter 8: Metasploit Extended
Chapter 8: Metasploit Extended
Technical requirements
Basic Windows post-exploitation commands
Windows versus Linux basic post-exploitation commands
Advanced Windows post-exploitation modules
Advanced multi-OS extended features of Metasploit
Privilege escalation with Metasploit
Summary
12
Chapter 9: Evasion with Metasploit
Chapter 9: Evasion with Metasploit
Technical requirements
Evading Meterpreter detection using C wrappers and custom encoders
Evading Meterpreter with Python
Evading intrusion detection systems with Metasploit
Bypassing Windows firewall blocked ports
Summary
13
Chapter 10: Metasploit for Secret Agents
Chapter 10: Metasploit for Secret Agents
Technical requirements
Maintaining anonymity in Meterpreter sessions using proxy and HOP payloads
Maintaining access using search order hijacking in standard software
Harvesting files from target systems
Using Venom for obfuscation
Covering tracks with anti-forensics modules
Summary
14
Chapter 11: Visualizing Metasploit
Chapter 11: Visualizing Metasploit
Technical requirements
Kage for Meterpreter sessions
Automated exploitation using Armitage
Red teaming with the Armitage team server
Scripting Armitage
Summary
15
Chapter 12: Tips and Tricks
Chapter 12: Tips and Tricks
Technical requirements
Automation using the Minion script
Using connect instead of Netcat
Shell upgrades and background sessions
Naming conventions
Saving configurations in Metasploit
Using inline handler and renaming jobs
Running commands on multiple Meterpreters
Automating the Social Engineering Toolkit
Cheat sheets for Metasploit and penetration testing
Summary
Further reading
16
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

Preface

Penetration testing and security assessments are necessities for businesses today. With the rise of cyber and computer-based crime in the past few years, penetration testing has become one of the core aspects of network security. It helps in keeping a business secure from internal as well as external threats. The reason that penetration testing is a necessity is that it helps in uncovering the potential flaws in a network, a system, or an application.

Moreover, it helps in identifying weaknesses and threats from an attacker's perspective. Various inherent flaws in a system are exploited to find out the impact they can cause to an organization and to assess the risk factors to the assets as well. However, the success rate of a penetration test depends mostly on the knowledge of the tester about the target under test. Therefore, we generally approach a penetration test using two different methods: black-box testing and white-box testing. Black-box testing refers to a scenario where there is no prior knowledge of the target under test. Therefore, a penetration tester kicks off testing by collecting information about the target systematically. By contrast, in the case of a white-box penetration test, the penetration tester has enough knowledge about the target under test, and they start by identifying known and unknown weaknesses of the target. Generally, a penetration test is divided into seven different phases, as follows:

  • Pre-engagement interactions: This phase defines all the pre-engagement activities and scope definitions – basically, everything you need to discuss with the client before the testing starts.
  • Intelligence gathering: This phase is all about collecting information about the target under test by connecting to the target directly, and passively, without connecting to the target at all.
  • Threat modeling: This phase involves matching the information detected with the assets to find the areas with the highest threat level.
  • Vulnerability analysis: This involves finding and identifying known and unknown vulnerabilities and validating them.
  • Exploitation: This phase involves taking advantage of the vulnerabilities found in the previous stage and typically means that we are trying to gain access to the target.
  • Post exploitation: The actual task to be performed on the target, which might involve downloading a file, shutting down a system, creating a new user account on the target, and so on, are parts of this phase. Generally, this phase describes what you need to do after exploitation.
  • Reporting: This phase includes summing up the results of the test in a file and the possible suggestions and recommendations to fix the current weaknesses in the target.

The seven stages just mentioned may look more natural when there is a single target under test. However, the situation completely changes when a vast network that contains hundreds of systems are to be tested. Therefore, in a case like this, manual work is to be replaced with an automated approach. Consider a scenario where the number of systems under test is precisely 100, and all systems are running the same operating system and services. Testing every system manually will consume much time and energy. Situations like these demand the use of a penetration testing framework. Using a penetration testing framework will not only save time but will also offer much more flexibility regarding changing the attack vectors and covering a much more comprehensive range of targets through the test. A penetration testing framework will eliminate additional time consumption and will also help in automating most of the attack vectors, scanning processes, identifying vulnerabilities, and, most importantly, exploiting the vulnerabilities, thus saving time and pacing a penetration test. This is where Metasploit kicks in.

Metasploit is considered one of the best and most used widely used penetration testing frameworks. With a lot of rep in the IT security community, Metasploit not only caters to the needs of penetration testers by providing an excellent penetration testing framework, but also delivers very innovative features that make the life of a penetration tester easy.

Mastering Metasploit, Fourth Edition aims to provide readers with insights into the legendary Metasploit Framework and specifically, version 5.0. This book focuses explicitly on mastering Metasploit with regard to exploitation, including writing custom exploits, porting exploits, testing services, conducting sophisticated client-side testing, evading antivirus and firewalls, and much more.

Moreover, this book helps to convert your customized attack vectors into Metasploit modules, and covers use of Ruby to do this. This book will not only help advance your penetration testing knowledge but will also help you build programming skills while mastering the most advanced penetration testing techniques.

Unlock full access

Continue reading for free

A Packt free trial gives you instant online access to our library of over 7000 practical eBooks and videos, constantly updated with the latest in tech
Start a 7-day FREE trial
Next Section
bookmark search playlist download
font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY