BackTrack 5 Cookbook

 

BackTrack is a Linux-based penetration testing arsenal that aids security professionals in the ability to perform assessments in a purely native environment dedicated to hacking. BackTrack is a distribution based on the Debian GNU/Linux distribution aimed at digital forensics and penetration testing use. It is named after backtracking, a search algorithm.
“BackTrack 5 Cookbook” provides you with practical recipes featuring many popular tools that cover the basics of a penetration test: information gathering, vulnerability identification, exploitation, priviledge escalation, and covering your tracks.
The book begins by covering the installation of BackTrack 5 and setting up a virtual environment to perform your tests.
We then dip into recipes involving the basic principles of a penetration test such as information gathering, vulnerability identification, and exploitation. You will further learn about privilege escalation, radio network analysis, Voice over IP, Password cracking, and BackTrack forensics.
“BackTrack 5 Cookbook” will serve as an excellent source of information for the security professional and novice alike.
What will you learn from this book

• Install and set up BackTrack 5 on multiple platforms
• Customize BackTrack to fit your individual needs
• Exploit vulnerabilities found with Metasploit
• Locate vulnerabilities Nessus and OpenVAS
• Provide several solutions to escalate privileges on a compromised machine
• Learn how to use BackTrack in all phases of a penetration test
• Crack WEP/WPA/WPA2 Encryption
• Learn how to monitor and eavesdrop on VOIP networks

Approach
This is a cookbook with the necessary explained commands and code to learn BackTrack thoroughly. It smoothes your learning curve through organized recipes.
Who this book is written for
This book is for anyone who desires to come up to speed in using BackTrack 5 or for use as a reference for seasoned penetration testers.

Download

CEH Certified Ethical Hacker Study Guide

Learn how to identify security risks to networks and computers as you prepare for the Certified Ethical Hacker version 6 (CEHv6) exam. This in-depth guide thoroughly covers all exam objectives and topics, while showing you how Black Hat hackers think, helping you spot vulnerabilities in systems, and preparing you to beat the bad guys at their own game. Inside, you'll find:

• Full coverage of all exam objectives in a systematic approach, so you can be confident you're getting the instruction you need for the exam
  
• Practical hands-on exercises to reinforce critical skills
  
• Real-world scenarios that put what you've learned in the context of actual job roles
  
• Challenging review questions in each chapter to prepare you for exam day
  
• Exam Essentials, a key feature in each chapter that identifies critical areas you must become proficient in before taking the exam
  
• A handy tear card that maps every official exam objective to the corresponding chapter in the book, so you can track your exam prep objective by objective
  
  

   Download

Learn how to identify security risks to networks and computers as you prepare for the Certified Ethical Hacker version 6 (CEHv6) exam. This in-depth guide thoroughly covers all exam objectives and topics, while showing you how Black Hat hackers think, helping you spot vulnerabilities in systems, and preparing you to beat the bad guys at their own game. Inside, you’ll find: Full coverage of all exam objectives in a systematic approach, so you can be confident you’re getting the instruction you need for the exam Practical hands-on exercises to reinforce critical skills Real-world scenarios that put what you’ve learned in the context of actual job roles Challenging review questions in each chapter to prepare you for exam day Exam Essentials, a key feature in each chapter that identifies critical areas you must become proficient in before taking the exam A handy tear card that maps every official exam objective to the corresponding chapter in the book, so you can track your exam prep objective by objective Look inside for complete coverage of all exam objectives. Table of Contents Chapter 1. Introduction to Ethical Hacking, Ethics, and Legality Chapter 2. Gathering Target Information: Reconnaissance, Footprinting, and Social Engineering Chapter 3. Gathering Network and Host Information: Scanning and Enumeration Chapter 4. System Hacking: Password Cracking, Escalating Privileges, and Hiding Files Chapter 5. Installing Software on Target Systems: Spyware, Trojans, Backdoors, Viruses, and Worms Chapter 6. Gathering Data from Networks: Sniffers Chapter 7. Denial of Service and Session Hijacking Chapter 8. Web Hacking: Google, Web Servers, Web Application Vulnerabilities, and Web-Based Password Cracking Techniques Chapter 9. Attacking Applications: SQL Injection and Buffer Overflows Chapter 10. Wireless Network Hacking Chapter 11. Physical Site Security Chapter 12. Hacking Linux Systems Chapter 13. Bypassing Network Security: Evading IDS, Honeypots, and Firewalls Chapter 14. Understanding Cryptography Chapter 15. Performing a Penetration Test

Read more at: http://www.wowebook.com/book/ceh-certified-ethical-hacker-study-guide/

Prepare for CEH certification with this comprehensive guide Learn how to identify security risks to networks and computers as you prepare for the Certified Ethical Hacker version 6 (CEHv6) exam. This in-depth guide thoroughly covers all exam objectives and topics, while showing you how Black Hat hackers think, helping you spot vulnerabilities in systems, and preparing you to beat the bad guys at their own game. Inside, you’ll find: Full coverage of all exam objectives in a systematic approach, so you can be confident you’re getting the instruction you need for the exam Practical hands-on exercises to reinforce critical skills Real-world scenarios that put what you’ve learned in the context of actual job roles Challenging review questions in each chapter to prepare you for exam day Exam Essentials, a key feature in each chapter that identifies critical areas you must become proficient in before taking the exam A handy tear card that maps every official exam objective to the corresponding chapter in the book, so you can track your exam prep objective by objective Look inside for complete coverage of all exam objectives. Table of Contents Chapter 1. Introduction to Ethical Hacking, Ethics, and Legality Chapter 2. Gathering Target Information: Reconnaissance, Footprinting, and Social Engineering Chapter 3. Gathering Network and Host Information: Scanning and Enumeration Chapter 4. System Hacking: Password Cracking, Escalating Privileges, and Hiding Files Chapter 5. Installing Software on Target Systems: Spyware, Trojans, Backdoors, Viruses, and Worms Chapter 6. Gathering Data from Networks: Sniffers Chapter 7. Denial of Service and Session Hijacking Chapter 8. Web Hacking: Google, Web Servers, Web Application Vulnerabilities, and Web-Based Password Cracking Techniques Chapter 9. Attacking Applications: SQL Injection and Buffer Overflows Chapter 10. Wireless Network Hacking Chapter 11. Physical Site Security Chapter 12. Hacking Linux Systems Chapter 13. Bypassing Network Security: Evading IDS, Honeypots, and Firewalls Chapter 14. Understanding Cryptography Chapter 15. Performing a Penetration Test

Read more at: http://www.wowebook.com/book/ceh-certified-ethical-hacker-study-guide/

Metasploit Penetration Testing Cookbook

About the Book

Metasploit® software helps security and IT professionals identify security issues, verify vulnerability mitigations, and manage expert-driven security assessments. Capabilities include smart exploitation, password auditing, web application scanning, and social engineering. Teams can collaborate in Metasploit and present their findings in consolidated reports. The goal of the software is to provide a clear understanding of the critical vulnerabilities in any environment and to manage those risks.
Metasploit Penetration Testing Cookbook targets both professionals and beginners to the framework. The chapters of the book are logically arranged with an increasing level of complexity and cover Metasploit aspects ranging from pre-exploitation to the post-exploitation phase thoroughly

The recipe structure of the book provides a good mix of both theoretical understanding and practical implementation.
This book will help readers in thinking from a hacker’s perspective to dig out the flaws in target networks and also to leverage the powers of Metasploit to compromise them. It will take your penetration skills to the next level.
The book starts with the basics such as gathering information about your target and gradually covers advanced topics like building your own framework scripts and modules. The book goes deep into operating systems-based penetration testing techniques and moves ahead with client-based exploitation methodologies. In the post- exploitation phase, it covers meterpreter, antivirus bypass, ruby wonders, exploit building, porting exploits to framework, and third party tools like armitage, and SET.

What you will learn from this book
•    Set up a complete penetration testing environment using metasploit and virtual machines
•    Learn to penetration-test popular operating systems such as Windows7, Windows 2008 Server, Ubuntu etc.
•    Get familiar with penetration testing based on client side exploitation techniques with detailed analysis of vulnerabilities and codes
•    Avail of exclusive coverage of antivirus bypassing techniques using metasploit
•    Master post-exploitation techniques such as exploring the target, keystrokes capturing, sniffing, pivoting, setting persistent connections etc.
•    Build and analyze meterpreter scripts in Ruby
•    Build and export exploits to framework
•    Use extension tools like Armitage, SET etc.


Approach
This is a Cookbook which follows a practical task-based style. There are plenty of code and commands used for illustration which make your learning curve easy and quick.


Who this book is for
This book targets both professional penetration testers as well as new users of Metasploit who wish to gain expertise over the framework. The book requires basic knowledge of scanning, exploitation, and Ruby language.

Table of Content
 Chapter 1: Metasploit Quick Tips for Security Professionals
Chapter 2: Information Gathering and Scanning
Chapter 3: Operating System-based Vulnerability Assessment and Exploitation
Chapter 4: Client-side Exploitation and Antivirus Bypass
Chapter 5: Using Meterpreter to Explore the Compromised Target
Chapter 6: Advanced Meterpreter Scripting
Chapter 7: Working with Modules for Penetration Testing
Chapter 8: Working with Exploits
Chapter 9: Working with Armitage
Chapter 10: Social Engineer Toolkit


Download

BackTrack 5 Wireless Penetration Testing-Beginner's Guide

Overview 

This book will take you through the basic concepts in Wireless and creating a lab environment for your experiments to the business of different lab sessions in wireless security basics, slowly turn on the heat and move to more complicated scenarios, and finally end your journey by conducting bleeding edge wireless attacks in your lab.
If you were ever curious about what wireless security and hacking was all about, then this book will get you started by providing you with the knowledge and practical know-how to become a wireless hacker.
Hands-on practical guide with a step-by-step approach to help you get started immediately with Wireless Penetration Testing
What you will learn from this book :
-Create a Wireless Lab for conducting experiments
-Monitor the air and sniff wireless packets
-Bypass WLAN authentication mechanism
-Crack WEP/WPA/WPA2 encryption mechanisms
-Break into a WLAN network using infrastructure flaws
-Break into a Wireless client such as a laptop
-Advanced attacks such as Man-in-the-Middle attacks and Evading WIPS
-Conduct wireless penetration test in a methodical way
Download

Table of Contents

Preface
Chapter 1: Wireless Lab Setup
Chapter 2: WLAN and Its Inherent Insecurities
Chapter 3: Bypassing WLAN Authentication
Chapter 4: WLAN Encryption Flaws
Chapter 5: Attacks on the WLAN Infrastructure
Chapter 6: Attacking the Client
Chapter 7: Advanced WLAN Attacks
Chapter 8: Attacking WPA-Enterprise and RADIUS
Chapter 9: WLAN Penetration Testing Methodology
Appendix A: Conclusion and Road Ahead
Appendix B: Pop Quiz Answers
Index

 

Vivek Ramachandran 

Vivek Ramachandran is a world renowned security researcher and evangelist. He is the discoverer of the wireless “Caffe Latte Attack” and has delivered presentations in world renowned Information Security conferences such as Defcon and Toorcon in the US.

Vivek is also an accomplished trainer and travels around the world conducting workshops and training sessions for corporates and students. He holds a degree in B.Tech from IIT Guwahati and acts as an advisor to the computer science department’s Security Lab.

Hacktivity 2012 - Vivek Ramachandran - Cracking WPA/WPA2 Personal and Enterprise for Fun and Profit http://youtu.be/Ra0dGPYScLQ

The Web Application Hacker's Handbook: Finding and Exploiting Security Flaws, 2nd Edition

 

Table of Contents

Introduction xxiii Chapter 1 Web Application (In)security 1
Chapter 2 Core Defense Mechanisms 17
Chapter 3 Web Application Technologies 39
Chapter 4 Mapping the Application 73
Chapter 5 Bypassing Client-Side Controls 117
Chapter 6 Attacking Authentication 159
Chapter 7 Attacking Session Management 205
Chapter 8 Attacking Access Controls 257
Chapter 9 Attacking Data Stores 287
Chapter 10 Attacking Back-End Components 357
Chapter 11 Attacking Application Logic 405
Chapter 12 Attacking Users: Cross-Site Scripting 431
Chapter 13 Attacking Users: Other Techniques 501
Chapter 14 Automating Customized Attacks 571
Chapter 15 Exploiting Information Disclosure 615
Chapter 16 Attacking Native Compiled Applications 633
Chapter 17 Attacking Application Architecture 647
Chapter 18 Attacking the Application Server 669
Chapter 19 Finding Vulnerabilities in Source Code 701
Chapter 20 A Web Application Hacker’s Toolkit 747
Chapter 21 A Web Application Hacker’s Methodology 791
Index 853

The highly successful security book returns with a new edition, completely updated Web applications are the front door to most organizations, exposing them to attacks that may disclose personal information, execute fraudulent transactions, or compromise ordinary users. This practical book has been completely updated and revised to discuss the latest step-by-step techniques for attacking and defending the range of ever-evolving web applications. You'll explore the various new technologies employed in web applications that have appeared since the first edition and review the new attack techniques that have been developed, particularly in relation to the client side.

• Reveals how to overcome the new technologies and techniques aimed at defending web applications against attacks that have appeared since the previous edition
• Discusses new remoting frameworks, HTML5, cross-domain integration techniques, UI redress, framebusting, HTTP parameter pollution, hybrid file attacks, and more
• Features a companion web site hosted by the authors that allows readers to try out the attacks described, gives answers to the questions that are posed at the end of each chapter, and provides a summarized methodology and checklist of tasks

Focusing on the areas of web application security where things have changed in recent years, this book is the most current resource on the critical topic of discovering, exploiting, and preventing web application security flaws.

DAFYDD STUTTARD is an independent security consultant, author, and software developer specializing in penetration testing of web applications and compiled software. Under the alias PortSwigger, Dafydd created the popular Burp Suite of hacking tools.  
MARCUS PINTO delivers security consultancy and training on web application attack and defense to leading global organizations in the financial, government, telecom, gaming, and retail sectors.
The authors cofounded MDSec, a consulting company that provides training in attack and defense-based security.

Download