Book description
Over 100 practical recipes that leverage custom scripts and integrated tools in Kali Linux to help you effectively master network scanning
About This Book
Learn the fundamentals behind commonly used scanning techniques
Deploy powerful scanning tools that are integrated into the Kali Linux testing platform
The practical recipes will help you automate menial tasks and build your own script library
Who This Book Is For
This book is for information security professionals and casual security enthusiasts alike. It provides foundational principles if you’re a novice, but will also introduce scripting techniques and in-depth analysis if you’re more advanced. Whether you are brand new to Kali Linux or a seasoned veteran, this book will help you both understand and ultimately master many of the most powerful and useful scanning techniques in the industry. It is assumed that you have some basic security testing experience.
What You Will Learn
Develop a network-testing environment to test scanning tools and techniques
Understand the principles of network-scanning tools by building scripts and tools
Identify distinct vulnerabilities in web apps and remote services and learn how they are exploited
Perform comprehensive scans to identify listening on TCP and UDP sockets
Get started with different Kali desktop environments--KDE, MATE, LXDE, and Xfce
Use Sparta for information gathering, port scanning, fingerprinting, vulnerability scanning, and more
Evaluate DoS threats and learn how common DoS attacks are performed
Learn how to use Burp Suite to evaluate web applications
In Detail
With the ever-increasing amount of data flowing in today’s world, information security has become vital to any application. This is where Kali Linux comes in. Kali Linux focuses mainly on security auditing and penetration testing. This step-by-step cookbook on network scanning trains you in important scanning concepts based on version 2016.2. It will enable you to conquer any network environment through a range of network scanning techniques and will also equip you to script your very own tools.
Starting with the fundamentals of installing and managing Kali Linux, this book will help you map your target with a wide range of network scanning tasks, including discovery, port scanning, fingerprinting, and more. You will learn how to utilize the arsenal of tools available in Kali Linux to conquer any network environment. The book offers expanded coverage of the popular Burp Suite and has new and updated scripts for automating scanning and target exploitation. You will also be shown how to identify remote services, how to assess security risks, and how various attacks are performed. You will cover the latest features of Kali Linux 2016.2, which includes the enhanced Sparta tool and many other exciting updates.
This immersive guide will also encourage the creation of personally scripted tools and the skills required to create them.
Style and approach
This step-by-step guide is full of recipes that will help you use integrated scanning tools in Kali Linux and develop custom scripts to make new and unique tools of your own.
Table of contents
- Preface
-
Getting Started
- Introduction
- Configuring a security lab with VMware Player (Windows)
- Configuring a security lab with VMware Fusion (macOS)
- Installing Ubuntu Server
- Installing Metasploitable2
- Installing Windows Server
- Increasing the Windows attack surface
- Installing Kali Linux
- Using text editors (Vim and GNU nano)
- Keeping Kali updated
- Managing Kali services
- Configuring and using SSH
- Installing Nessus on Kali Linux
- Reconnaissance
-
Discovery
- Introduction
- Using Scapy to perform host discovery (layers 2/3/4)
- Using Nmap to perform host discovery (layers 2/3/4)
- Using ARPing to perform host discovery (layer 2)
- Using netdiscover to perform host discovery (layer 2)
- Using Metasploit to perform host discovery (layer 2)
- Using hping3 to perform host discovery (layers 3/4)
- Using ICMP to perform host discovery
- Using fping to perform host discovery
-
Port Scanning
- Introduction
- UDP port scanning
- TCP port scanning
- Port scanning with Scapy (UDP, stealth, connect, and zombie)
- Port scanning with Nmap (UDP, stealth, connect, zombie)
- Port scanning with Metasploit(UDP, stealth, and connect)
- Port scanning with hping3 (stealth)
- Port scanning with DMitry (connect)
- Port scanning with Netcat (connect)
- Port scanning with masscan (stealth)
-
Fingerprinting
- Introduction
- Banner grabbing with Netcat
- Banner grabbing with Python sockets
- Banner grabbing with DMitry
- Banner grabbing with Nmap NSE
- Banner grabbing with Amap
- Service identification with Nmap
- Service identification with Amap
- Operating system identification with Scapy
- Operating system identification with Nmap
- Operating system identification with xprobe2
- Passive operating system identification with p0f
- SNMP analysis with Onesixtyone
- SNMP analysis with SNMPwalk
- Firewall identification with Scapy
- Firewall identification with Nmap
- Firewall identification with Metasploit
-
Vulnerability Scanning
- Introduction
- Vulnerability scanning with the Nmap Scripting Engine
- Vulnerability scanning with MSF auxiliary modules
- Creating scan policies with Nessus
- Vulnerability scanning with Nessus
- Vulnerability scanning with OpenVAS
- Validating vulnerabilities with HTTP interaction
- Validating vulnerabilities with ICMP interaction
-
Denial of Service
- Introduction
- Fuzz testing to identify buffer overflows
- Remote FTP service buffer-overflow DoS
- Smurf DoS attack
- DNS amplification DoS attacks
- SNMP amplification DoS attack
- SYN flood DoS attack
- Sock stress DoS attack
- DoS attacks with Nmap NSE
- DoS attacks with Metasploit
- DoS attacks with the exploit database
-
Working with Burp Suite
- Introduction
- Configuring Burp Suite on Kali Linux
- Defining a web application target with Burp Suite
- Using Burp Suite Spider
- Using Burp Suite Proxy
- Using Burp Suite engagement tools
- Using the Burp Suite web application scanner
- Using Burp Suite Intruder
- Using Burp Suite Comparer
- Using Burp Suite Repeater
- Using Burp Suite Decoder
- Using Burp Suite Sequencer
- Using Burp Suite Extender
- Using Burp Suite Clickbandit
-
Web Application Scanning
- Introduction
- Web application scanning with Nikto
- SSL/TLS scanning with SSLScan
- SSL/TLS scanning with SSLyze
- GET method SQL injection with sqlmap
- POST method SQL injection with sqlmap
- Requesting a capture SQL injection with sqlmap
- Automating CSRF testing
- Validating command-injection vulnerabilities with HTTP traffic
- Validating command-injection vulnerabilities with ICMP traffic
- Attacking the Browser with BeEF
- Working with Sparta
-
Automating Kali Tools
- Introduction
- Nmap greppable output analysis
- Port scanning with NMAP NSE execution
- Automate vulnerability scanning with NSE
- Automate web application scanning with Nikto
- Multithreaded MSF exploitation with reverse shell payload
- Multithreaded MSF exploitation with backdoor executable
- Multithreaded MSF exploitation with ICMP verification
- Multithreaded MSF exploitation with admin account creation
Product information
- Title: Kali Linux Network Scanning Cookbook - Second Edition
- Author(s):
- Release date: May 2017
- Publisher(s): Packt Publishing
- ISBN: 9781787287907
You might also like
book
Kali Linux Cookbook - Second Edition
Over 80 recipes to effectively test your network and boost your career in security About This …
book
Kali Linux Intrusion and Exploitation Cookbook
Over 70 recipes for system administrators or DevOps to master Kali Linux 2 and perform effective …
book
Learning Kali Linux
With more than 600 security tools in its arsenal, the Kali Linux distribution can be overwhelming. …
book
Web Penetration Testing with Kali Linux
Testing web security is best done through simulating an attack. Kali Linux lets you do this …