Please Sign Up to Request This Product


The Penetration Tester's Guide

You need to be an approved reviewer to request a product. Please sign up to request access or login to your account.

If you've already signed up and you haven't heard from us yet please email and we will check on your request.


"The best guide to the Metasploit Framework."—HD Moore, Founder of the Metasploit Project

The Metasploit Framework is a powerful suite of tools that security researchers use to investigate and resolve potential network and system vulnerabilities. Metasploit: The Penetration Tester's Guide shows readers how to assess networks by using Metasploit to launch simulated attacks that expose weaknesses in their security.


On Jun 16 Carel Fenijn wrote: Review of the book: METASPLOIT, The Penetration Tester's Guide, by David Kennedy, Jim O'Gorman, Devon Kearns and Mati Aharoni
The following is a review of the book METASPLOIT, The Penetration Tester's Guide, by David Kennedy, Jim O'Gorman, Devon Kearns and Mati Aharoni, no starch press, San Francisco, 2011. In a nutshell: This book is a must have for penetration testers. It is an excellent introduction to the Metasploit Framework, that is useful for both beginners and people who would like to leverage their own exploits, using the framework. One thing that stands out in this book from my own point of view is, that one can use Metasploit for the automation of Social Engineering purposes as well. It is not a thing I intend to use myself, but it is absolutely useful to learn about it, first hand from the person who implemented the Social-Engineer Toolkit (SET), himself, David Kennedy. The other authors of the book are also productive people in the field of security. To those who want to write code themselves and use that with metasploit, this book offers a very low threshold introduction. Full Review  >

Rating: StarStarStarStarStar5.0

On Jul 11 Jason Armstrong wrote:
Full Review  >

Rating: StarStarStarStarStar4.0

On Jun 23 Virginia Benedict wrote: METASPLOIT The Penetration Tester’s Guide
A must read for Information Security Professionals and Stake Holders: This Guide offers a wealth of information to both the novice as Tutorial and the experienced as Reference. For starters, the Novice will learn relevant steps on how to get started; and the Experienced with benefit from the discussions on Methodology. Program Managers and Stake Holders will benefit from a managers perspective Full Review  >

Rating: StarStarStarStarStar5.0

On Jun 15 Fabio Alessandro Locati wrote: Really good book
Metasploit is the most common and complete framework for testing security. Metasploit is an entire suite of tools and methodologies designed for testing the security of computers and networks. Full Review  >

Rating: StarStarStarStarStar5.0

Receive free ebooks and videos in exchange for your reviews.

Join the O'Reilly Reader Review Program

Learn more >


Top Reviewers

Michal Konrad Owsiak, 93 Reviews

Santosh Shanbhag, 58 Reviews

Surachart Opun, 57 Reviews

Doron Katz, 56 Reviews

Shawn Day, 55 Reviews

See More Reviewers >

Featured Review

The Myths of Innovation

Mike Erickson wrote:
Book Review: The Myths of Innovation by Scott Berkun
So far this is the most 'dog-eared' and marked up eBook I have read! The… Full Review >

Rating: StarStarStarStarStar5.0