LEADER 04122nam 2200589 450 001 9910789005503321 005 20200520144314.0 010 $a1-78328-298-3 035 $a(CKB)3710000000089791 035 $a(EBL)1611819 035 $a(SSID)ssj0001165522 035 $a(PQKBManifestationID)11776996 035 $a(PQKBTitleCode)TC0001165522 035 $a(PQKBWorkID)11199179 035 $a(PQKB)11088991 035 $a(MiAaPQ)EBC1611819 035 $a(Au-PeEL)EBL1611819 035 $a(CaPaEBR)ebr10839994 035 $a(CaONFJC)MIL577431 035 $a(OCoLC)871189824 035 $a(PPN)22803924X 035 $a(EXLCZ)993710000000089791 100 $a20140306h20142014 uy 0 101 0 $aeng 135 $aur|n|---||||| 181 $ctxt 182 $cc 183 $acr 200 10$aPenetration testing with backbox $ean introductory guide to performing crucial penetration testing operations using backbox /$fStefan Umit Uygur ; cover image by Aniket Sawant 210 1$aBirmingham, England :$cPackt Publishing Ltd,$d2014. 210 4$dİ2014 215 $a1 online resource (130 p.) 225 0$aCommunity experience distilled 300 $aIncludes index. 311 $a1-78328-297-5 327 $aCover; Copyright; Credits; About the Author; About the Reviewers; www.PacktPub.com; Table of Contents; Preface; Chapter 1: Starting Out with BackBox Linux; A flexible penetration testing distribution; The organization of tools in BackBox; Information Gathering; Vulnerability Assessment; Exploitation; Privilege Escalation; Maintaining Access; Documentation & Reporting; Reverse Engineering; Social Engineering; Stress Testing; Forensic Analysis; VoIP Analysis; Wireless Analysis; Miscellaneous; Services; Update; Anonymous; Extras; Completeness, accuracy, and support; Links and contacts; Summary 327 $aChapter 2: Information GatheringStarting with an unknown system; Automater; Whatweb; Recon-ng; Proceeding with a known system; Nmap; Summary; Chapter 3: Vulnerability Assessment and Management; Vulnerability scanning; Setting up the environment; Running the scan with OpenVAS; False positives; An example of vulnerability verification; Summary; Chapter 4: Exploitations; Exploitation of a SQL injection on a database; Sqlmap usage and vulnerability exploitation; Finding the encrypted password; Exploiting web applications with W3af; Summary; Chapter 5: Eavesdropping and Privilege Escalation 327 $aSniffing encrypted SSL/TLS trafficAn SSL MITM attack using sslstrip; Password cracking; Offline password cracking using John the Ripper; Remote password cracking with Hydra and xHydra; Summary; Chapter 6: Maintaining Access; Backdoor Weevely; Weevely in URL; Performing system commands; Enumerate config files; Getting access credentials; File editing; Gathering full system information; Summary; Chapter 7: Penetration Testing Methodologies with BackBox; Information gathering; Scanning; Exploitation; Summary; Chapter 8: Documentation and Reporting; MagicTree - the auditing productivity tool 327 $aSummaryIndex 330 $aBackBox is an amazing Linux security distribution designed to keep in mind the needs of security and system administration specialists. It has been developed to perform penetration tests and security assessments. Designed to be fast and easy to use while providing a minimal yet complete desktop environment, Backbox comes with its own software repositories and is continually updated to the latest stable version of the most widely used and best-known ethical hacking tools. This book provides an exciting introduction to BackBox Linux in order give you familiarity with and understanding of this am 606 $aPenetration testing (Computer security) 615 0$aPenetration testing (Computer security) 676 $a005.8 700 $aUygur$b Stefan Umit$01535320 701 $aSawant$b Aniket$01535321 801 0$bMiAaPQ 801 1$bMiAaPQ 801 2$bMiAaPQ 906 $aBOOK 912 $a9910789005503321 996 $aPenetration testing with backbox$93783463 997 $aUNINA