Ethical Hacking: A Hands-on Introduction to Breaking In |
|
|---|---|
| Authors: | Graham, Daniel |
| Publisher: | No Starch Press |
| BISAC/Subject: | COM051360, COM043050, COM060040 |
| ISBN: | 9781718501881, Related ISBNs: 1718501870, 1718501889, 9781718501874, 9781718501881 |
| Classification: | Non-Fiction |
| Number of pages: | 376, |
| Audience: | General/trade |
Synopsis: A hands-on guide to hacking computer systems from the ground up, from capturing traffic to crafting sneaky, successful trojans.
A crash course in modern hacking techniques, Ethical Hacking is already being used to prepare the next generation of offensive security experts. In its many hands-on labs, you’ll explore crucial skills for any aspiring penetration tester, security researcher, or malware analyst.
You’ll begin with the basics: capturing a victim’s network traffic with an ARP spoofing attack and then viewing it in Wireshark. From there, you’ll deploy reverse shells that let you remotely run commands on a victim’s computer, encrypt files by writing your own ransomware in Python, and fake emails like the ones used in phishing attacks. In advanced chapters, you’ll learn how to fuzz for new vulnerabilities, craft trojans and rootkits, exploit websites with SQL injection, and escalate your privileges to extract credentials, which you’ll use to traverse a private network.
You’ll work with a wide range of professional penetration testing tools—and learn to write your own tools in Python—as you practice tasks like:
• Deploying the Metasploit framework’s reverse shells and embedding them in innocent-seeming files
• Capturing passwords in a corporate Windows network using Mimikatz
• Scanning (almost) every device on the internet to find potential victims
• Installing Linux rootkits that modify a victim’s operating system
• Performing advanced Cross-Site Scripting (XSS) attacks that execute sophisticated JavaScript payloads
Along the way, you’ll gain a foundation in the relevant computing technologies. Discover how advanced fuzzers work behind the scenes, learn how internet traffic gets encrypted, explore the inner mechanisms of nation-state malware like Drovorub, and much more.
Developed with feedback from cybersecurity students, Ethical Hacking addresses contemporary issues in the field not often covered in other books and will prepare you for a career in penetration testing. Most importantly, you’ll be able to think like an ethical hacker: someone who can carefully analyze systems and creatively gain access to them.
A crash course in modern hacking techniques, Ethical Hacking is already being used to prepare the next generation of offensive security experts. In its many hands-on labs, you’ll explore crucial skills for any aspiring penetration tester, security researcher, or malware analyst.
You’ll begin with the basics: capturing a victim’s network traffic with an ARP spoofing attack and then viewing it in Wireshark. From there, you’ll deploy reverse shells that let you remotely run commands on a victim’s computer, encrypt files by writing your own ransomware in Python, and fake emails like the ones used in phishing attacks. In advanced chapters, you’ll learn how to fuzz for new vulnerabilities, craft trojans and rootkits, exploit websites with SQL injection, and escalate your privileges to extract credentials, which you’ll use to traverse a private network.
You’ll work with a wide range of professional penetration testing tools—and learn to write your own tools in Python—as you practice tasks like:
• Deploying the Metasploit framework’s reverse shells and embedding them in innocent-seeming files
• Capturing passwords in a corporate Windows network using Mimikatz
• Scanning (almost) every device on the internet to find potential victims
• Installing Linux rootkits that modify a victim’s operating system
• Performing advanced Cross-Site Scripting (XSS) attacks that execute sophisticated JavaScript payloads
Along the way, you’ll gain a foundation in the relevant computing technologies. Discover how advanced fuzzers work behind the scenes, learn how internet traffic gets encrypted, explore the inner mechanisms of nation-state malware like Drovorub, and much more.
Developed with feedback from cybersecurity students, Ethical Hacking addresses contemporary issues in the field not often covered in other books and will prepare you for a career in penetration testing. Most importantly, you’ll be able to think like an ethical hacker: someone who can carefully analyze systems and creatively gain access to them.
LightSail includes up to 6,000 high interest, LexileⓇ aligned book titles with every student subscription. Other titles are available for individual purchase.
SUPPORT GROWING READERS
Immediately Engage Students
Simple intuitive design has classrooms reading within minutes.
Exponentially Grow Reading Time
Students love the LightSail experience and naturally spend more time reading.
Accelerate Literacy Development
Students reading 25 minutes a day on LightSail are seeing 2+ years of Lexile growth in a single year.
LightSail Education is a comprehensive LexileⓇ and standards-aligned, literacy platform and digital e-book library. Including multimodal learning functionality and featuring books from leading publishers, LightSail holistically assesses and nurtures each student on their reading and writing-to-learn journey, throughout elementary, middle, and high school.
*LightSail offers a 2,000 or a 6,000 title bundle with its student subscriptions. Other titles are available for individual purchase.
