book

Gray Hat C#

Name: Gray Hat C#
Author: Brandon Perry
ISBN: 9781593277598

by Brandon Perry

June 2017

Intermediate to advanced

304 pages

7h 58m

English

No Starch Press

Read now

Unlock full access

Cover Page
Title Page
Copyright Page
Brief Contents
Contents in Detail
Foreword by Matt Graeber
Preface
Why Should I Trust Mono?Who Is This Book For?Organization of This BookAcknowledgmentsA Final Note
Chapter 1: C# Crash Course
Choosing an IDEA Simple ExampleIntroducing Classes and InterfacesCreating a ClassCreating an InterfaceSubclassing from an Abstract Class and Implementing an InterfaceTying Everything Together with the Main() MethodRunning the Main() MethodAnonymous MethodsAssigning a Delegate to a MethodUpdating the Firefighter ClassCreating Optional ArgumentsUpdating the Main() MethodRunning the Updated Main() MethodIntegrating with Native LibrariesConclusion
Chapter 2: Fuzzing and Exploiting XSS and SQL Injection
Setting Up the Virtual MachineAdding a Host-Only Virtual NetworkCreating the Virtual MachineBooting the Virtual Machine from the BadStore ISOSQL InjectionsCross-Site ScriptingFuzzing GET Requests with a Mutational FuzzerTainting the Parameters and Testing for VulnerabilitiesBuilding the HTTP RequestsTesting the Fuzzing CodeFuzzing POST RequestsWriting a POST Request FuzzerThe Fuzzing BeginsFuzzing ParametersFuzzing JSONSetting Up the Vulnerable ApplianceCapturing a Vulnerable JSON RequestCreating the JSON FuzzerTesting the JSON FuzzerExploiting SQL InjectionsPerforming a UNION-Based Exploit by HandPerforming a UNION-Based Exploit ProgrammaticallyExploiting Boolean-Blind SQL VulnerabilitiesConclusion
Chapter 3: Fuzzing SOAP Endpoints
Setting Up the Vulnerable EndpointParsing the WSDLCreating a Class for the WSDL DocumentWriting the Initial Parsing MethodsWriting a Class for the SOAP Type and ParametersCreating the SoapMessage Class to Define Sent DataImplementing a Class for Message PartsDefining Port Operations with the SoapPortType ClassImplementing a Class for Port OperationsDefining Protocols Used in SOAP BindingsCompiling a List of Operation Child NodesFinding the SOAP Services on PortsAutomatically Fuzzing the SOAP Endpoint for SQL Injection VulnerabilitiesFuzzing Individual SOAP ServicesFuzzing the HTTP POST SOAP PortFuzzing the SOAP XML PortRunning the FuzzerConclusion
Chapter 4: Writing Connect-Back, Binding, and Metasploit Payloads
Creating a Connect-Back PayloadThe Network StreamRunning the CommandRunning the PayloadBinding a PayloadAccepting Data, Running Commands, and Returning OutputExecuting Commands from the StreamUsing UDP to Attack a NetworkThe Code for the Target’s MachineThe Attacker’s CodeRunning x86 and x86-64 Metasploit Payloads from C#Setting Up MetasploitGenerating PayloadsExecuting Native Windows Payloads as Unmanaged CodeExecuting Native Linux PayloadsConclusion

Chapter 5: Automating Nessus
REST and the Nessus APIThe NessusSession ClassMaking the HTTP RequestsLogging Out and Cleaning UpTesting the NessusSession ClassThe NessusManager ClassPerforming a Nessus ScanConclusion
Chapter 6: Automating Nexpose
Installing NexposeActivation and TestingSome Nexpose ParlanceThe NexposeSession ClassThe ExecuteCommand() MethodLogging Out and Disposing of Our SessionFinding the API VersionDriving the Nexpose APIThe NexposeManager ClassAutomating a Vulnerability ScanCreating a Site with AssetsStarting a ScanCreating a PDF Site Report and Deleting the SitePutting It All TogetherStarting the ScanGenerating a Report and Deleting the SiteRunning the AutomationConclusion
Chapter 7: Automating OpenVAS
Installing OpenVASBuilding the ClassesThe OpenVASSession ClassAuthenticating with the OpenVAS ServerCreating a Method to Execute OpenVAS CommandsReading the Server MessageSetting Up the TCP Stream to Send and Receive CommandsCertificate Validation and Garbage CollectionGetting the OpenVAS VersionThe OpenVASManager ClassGetting Scan Configurations and Creating TargetsWrapping Up the AutomationRunning the AutomationConclusion
Chapter 8: Automating Cuckoo Sandbox
Setting Up Cuckoo SandboxManually Running the Cuckoo Sandbox APIStarting the APIChecking Cuckoo’s StatusCreating the CuckooSession ClassWriting the ExecuteCommand() Methods to Handle HTTP RequestsCreating Multipart HTTP Data with the GetMultipartFormData() MethodProcessing File Data with the FileParameter ClassTesting the CuckooSession and Supporting ClassesWriting the CuckooManager ClassWriting the CreateTask() MethodThe Task Details and Reporting MethodsCreating the Task Abstract ClassSorting and Creating Different Class TypesPutting It TogetherTesting the ApplicationConclusion
Chapter 9: Automating Sqlmap
Running sqlmapThe sqlmap REST APITesting the sqlmap API with curlCreating a Session for sqlmapCreating a Method to Execute a GET RequestExecuting a POST RequestTesting the Session ClassThe SqlmapManager ClassListing sqlmap OptionsMaking a Method to Perform ScansThe New Main() MethodReporting on a ScanAutomating a Full sqlmap ScanIntegrating sqlmap with the SOAP FuzzerAdding sqlmap GET Request Support to the SOAP FuzzerAdding sqlmap POST Request SupportCalling the New MethodsConclusion
Chapter 10: Automating ClamAV
Installing ClamAVThe ClamAV Native Library vs. the clamd Network DaemonAutomating with ClamAV’s Native LibrarySetting Up the Supporting Enumerations and ClassesAccessing ClamAV’s Native Library FunctionsCompiling the ClamAV EngineScanning FilesCleaning UpTesting the Program by Scanning the EICAR FileAutomating with clamdInstalling the clamd DaemonStarting the clamd DaemonCreating a Session Class for clamdCreating a clamd Manager ClassTesting with clamdConclusion
Chapter 11: Automating Metasploit
Running the RPC ServerInstalling MetasploitableGetting the MSGPACK LibraryInstalling the NuGet Package Manager for MonoDevelopInstalling the MSGPACK LibraryReferencing the MSGPACK LibraryWriting the MetasploitSession ClassCreating the Execute() Method for HTTP Requests and Interacting with MSGPACKTransforming Response Data from MSGPACKTesting the session ClassWriting the MetasploitManager ClassPutting It All TogetherRunning the ExploitInteracting with the ShellPopping ShellsConclusion
Chapter 12: Automating Arachni
Installing ArachniThe Arachni REST APICreating the ArachniHTTPSession ClassCreating the ArachniHTTPManager ClassPutting the Session and Manager Classes TogetherThe Arachni RPCManually Running the RPCThe ArachniRPCSession ClassThe Supporting Methods for ExecuteCommand()The ExecuteCommand() MethodThe ArachniRPCManager ClassPutting It All TogetherConclusion
Chapter 13: Decompiling and Reversing Managed Assemblies
Decompiling Managed AssembliesTesting the DecompilerUsing monodis to Analyze an AssemblyConclusion
Chapter 14: Reading Offline Registry Hives
The Registry Hive StructureGetting the Registry HivesReading the Registry HiveCreating a Class to Parse a Registry Hive FileCreating a Class for Node KeysMaking a Class to Store Value KeysTesting the LibraryDumping the Boot KeyThe GetBootKey() MethodThe GetValueKey() MethodThe GetNodeKey() MethodThe StringToByteArray() MethodGetting the Boot KeyVerifying the Boot KeyConclusion
Index
Resources
The Electronic Frontier Foundation (EFF)
Footnote
Chapter 8: Automating Cuckoo Sandbox

Overview

Learn to use C#'s powerful set of core libraries to automate tedious yet important tasks like fuzzing, performing vulnerability scans, and analyzing malware. With some help from Mono, you'll write your own practical security tools that will run on Windows, OS X, Linux, and even mobile devices.

After a crash course in C# and some of its advanced features, you'll learn how to:

Write fuzzers that use the HTTP and XML libraries to scan for SQL and XSS injections
Generate shellcode in Metasploit to create cross-platform and cross-architecture payloads
Automate Nessus, OpenVAS, and sqlmap to scan for vulnerabilities and exploit SQL injections
Write a .NET decompiler for OS X and Linux
Parse and read offline registry hives to dump system information
Automate the security tools Arachni and Metasploit using their MSGPACK RPCs

Streamline and simplify your workday by making the most of C#'s extensive repertoire of powerful tools and libraries with Gray Hat C#.

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Publisher Resources

ISBN: 9781492023449Errata Page

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills