Penetration Testing with Kali Linux: Learn Hands-on Penetration Testing Using a Process-Driven Framework

Book Description

Perform effective and efficient penetration testing in an enterprise scenario

Key Features

• Understand the penetration testing process using a highly customizable modular framework.
• Exciting use-cases demonstrating every action of penetration testing on target systems.
• Equipped with proven techniques and best practices from seasoned pen-testing practitioners.
• Experience-driven from actual penetration testing activities from multiple MNCs.

Description

This book is designed to introduce the topic of penetration testing using a structured and easy-to-learn process-driven framework.

Understand the theoretical aspects of penetration testing and create a penetration testing lab environment consisting of various targets to learn and practice your skills. Learn to comfortably navigate the Kali Linux and perform administrative activities, get to know shell scripting, and write simple scripts to effortlessly run complex commands and automate repetitive testing tasks.

Explore the various phases of the testing framework while practically demonstrating the numerous tools and techniques available within Kali Linux. Starting your journey from gathering initial information about the targets and performing enumeration to identify potential weaknesses and sequentially building upon this knowledge to refine the attacks and utilize weaknesses to fully compromise the target machines.

The authors of the book lay a particularly strong emphasis on documentation and the importance of generating crisp and concise reports which keep the various stakeholders’ requirements at the center stage.

What you will learn

• Understand the Penetration Testing Process and its various phases.
• Perform practical penetration testing using the various tools available in Kali Linux.
• Get to know the process of Penetration Testing and set up the Kali Linux virtual environment.

Who this book is for

This book caters to all IT professionals with a basic understanding of operating systems, networking, and Linux can use this book to build a skill set for performing real-world penetration testing.

About the Authors

Pranav Joshi has over 20 years of Information and Cybersecurity experience in leading and delivering large-scale projects for clients in diverse business verticals such as banking, finance, national stock exchanges, insurance, energy, petrochemical, retail, media, advertising, e-commerce, IT & ITES, government, defense, including Fortune 100 companies. In his previous role, he has been responsible for managing the security of information assets, infrastructure, and applications covering 65 countries significantly reducing compliance-related incidents.

LinkedIn Profile: https://www.linkedin.com/in/joshipranav/

Deepayan Chanda, a seasoned cybersecurity professional, architect, cybersecurity strategist, and advisor has a strong intent to solve cybersecurity problems for enterprises. He is driven by more than 24 years of diverse security domain experience and creates a balance between security and business goals. He has worked for the Indian Air Force. Currently, he is working with National Australia Bank.

LinkedIn Profile: https://www.linkedin.com/in/deepayan/

中文：

书名：Penetration Testing with Kali Linux: Learn Hands-on Penetration Testing Using a Process-Driven Framework

在企业场景中执行有效且高效的渗透测试

主要特点

• 使用高度可定制的模块化框架了解渗透测试流程。
• 令人兴奋的用例-演示渗透测试在目标系统上的每一项操作。
• Equipped with proven techniques and best practices from seasoned pen-testing practitioners.
• 体验-来自多家跨国公司的实际渗透测试活动。

Description

本书旨在介绍使用结构化且易于学习的流程驱动框架进行渗透测试的主题。

了解渗透测试的理论方面，并创建由各种目标组成的渗透测试实验室环境，以学习和练习您的技能。学习轻松地在Kali Linux中导航和执行管理活动，了解外壳脚本编写，并编写简单的脚本来轻松运行复杂的命令和自动执行重复的测试任务。

探索测试框架的各个阶段，同时实际演示Kali Linux中可用的许多工具和技术。从收集有关目标的初始信息开始，执行枚举以确定潜在的弱点，然后在此知识的基础上依次改进攻击并利用弱点来完全危害目标机器。

这本书的作者特别强调了文档和生成清晰而简洁的报告的重要性，这些报告将各种利益相关者的需求保持在中心舞台上。

What you will learn

• Understand the Penetration Testing Process and its various phases.
• 使用Kali Linux中提供的各种工具执行实际渗透测试。
• 了解渗透测试过程，搭建Kali Linux虚拟环境。

Who this book is for

这本书迎合了所有对操作系统、网络和Linux有基本了解的IT专业人士，并且可以使用这本书来构建执行真实世界渗透测试的技能集。

关于作者

Pranav Joshi在为银行、金融、国家证券交易所、保险、能源、石化、零售、媒体、广告、电子商务、IT和IT、政府、国防等不同商业垂直领域的客户领导和交付大型项目方面，他拥有20多年的信息和网络安全经验，包括财富100强公司。在他之前的职位上，他负责管理覆盖65个国家/地区的信息资产、基础设施和应用程序的安全，大大减少了与合规相关的事件。

LinkedIn个人资料: https://www.linkedin.com/in/joshipranav/

迪帕扬·昌达，是一位经验丰富的网络安全专业人士、架构师、网络安全策略师和顾问，具有为企业解决网络安全问题的强烈意图。他的动力来自于超过24年的不同安全领域经验，并在安全和业务目标之间取得平衡。他曾在印度空军工作。目前，他在澳大利亚国民银行工作。

LinkedIn个人资料: https://www.linkedin.com/in/deepayan/