Book description
This effective study guide provides 100% coverage of every topic on the GPEN GIAC Penetration Tester examThis effective self-study guide fully prepares you for the Global Information Assurance Certification’s challenging Penetration Tester exam, which validates advanced IT security skills. The book features exam-focused coverage of penetration testing methodologies, legal issues, and best practices. GPEN GIAC Certified Penetration Tester All-in-One Exam Guide contains useful tips and tricks, real-world examples, and case studies drawn from authors’ extensive experience. Beyond exam preparation, the book also serves as a valuable on-the-job reference.
Covers every topic on the exam, including:
- Pre-engagement and planning activities
- Reconnaissance and open source intelligence gathering
- Scanning, enumerating targets, and identifying vulnerabilities
- Exploiting targets and privilege escalation
- Password attacks
- Post-exploitation activities, including data exfiltration and pivoting
- PowerShell for penetration testing
- Web application injection attacks
- Tools of the trade: Metasploit, proxies, and more
- 230 accurate practice exam questions
- Test engine containing full-length practice exams and customizable quizzes
Table of contents
- Cover
- Title Page
- Copyright Page
- Dedication
- Contents
- Acknowledgments
- Introduction
- Chapter 1 Planning and Preparation
- Chapter 2 Reconnaissance
- Chapter 3 Initial Access
- Chapter 4 Execution
- Chapter 5 Persistence, Privilege Escalation, and Evasion
- Chapter 6 Credential Access
- Chapter 7 Discovery and Lateral Movement
- Chapter 8 Data Collection and Exfiltration
- Chapter 9 Writing and Communicating the Pentest Report
-
Appendix A Penetration Testing Tools and References
- Credential Testing Tools
- Debuggers
- Evasion and Code Obfuscation
- Networking Tools
- Penetration Testing Frameworks
- Reconnaissance (OSINT)
- Remote Access Tools
- Social Engineering Tools
- Virtual Machine Software
- Vulnerability and Exploitation Research
- Vulnerability Scanners
- Web and Database Tools
- Wireless Testing Tools
- Appendix B Setting Up a Basic GPEN Lab
-
Appendix C Capstone Project
- Capstone Tasks
- Exercise One: Reconnaissance
- Exercise Two: Initial Access
- Exercise Three: Exploit Chaining
- Exercise Four: Exploit Chaining Redux
- Capstone Hints
- Exercise One: Reconnaissance
- Exercise Two: Initial Access
- Exercise Three: Exploit Chaining
- Exercise Four: Exploit Chaining Redux
- Capstone Walkthrough
- Exercise One: Reconnaissance
- Exercise Two: Initial Access
- Exercise Three: Exploit Chaining
- Exercise Four: Exploit Chaining Redux
- Appendix D About the Online Content
- Glossary
- Index
Product information
- Title: GPEN GIAC Certified Penetration Tester All-in-One Exam Guide
- Author(s):
- Release date: November 2020
- Publisher(s): McGraw-Hill
- ISBN: 9781260456752
You might also like
book
The Web Application Hacker's Handbook, 2nd Edition
The highly successful security book returns with a new edition, completely updated Web applications are the …
book
Tribe of Hackers Red Team
Want Red Team offensive advice from the biggest cybersecurity names in the industry? Join our tribe. …
book
CEH Certified Ethical Hacker All-in-One Exam Guide, Fourth Edition, 4th Edition
Publisher's Note: Products purchased from Third Party sellers are not guaranteed by the publisher for quality, …
book
Penetration Testing
In Penetration Testing, security researcher and trainer Georgia Weidman provides you with a survey of important …