book

Hands on Hacking

Name: Hands on Hacking
ISBN: 9781119561453

by Matthew Hickey, Jennifer Arcuri

September 2020

Beginner

608 pages

17h 50m

English

Wiley

Read now

Unlock full access

Cover
Foreword
Introduction
Who Should Read This BookWhat You Will LearnHow This Book Is OrganizedHardware and Software RequirementsHow to Use This BookHow to Contact the Authors
Chapter 1: Hacking a Business Case
All Computers Are BrokenThe StakesBlue, Red, and Purple TeamsHacking is Part of Your Company's Immune SystemSummary
Chapter 2: Hacking Ethically and Legally
Laws That Affect Your WorkCriminal HackingHacking NeighborlyLegally GrayPenetration Testing MethodologiesAuthorizationResponsible DisclosureBug Bounty ProgramsLegal Advice and SupportHacker House Code of ConductSummary
Chapter 3: Building Your Hack Box
Hardware for HackingLinux or BSD?Host Operating SystemsVerifying DownloadsDisk EncryptionEssential SoftwareSetting Up VirtualBoxGuest AdditionsTesting Your Virtual EnvironmentCreating Vulnerable ServersSummary
Chapter 4: Open Source Intelligence Gathering
Does Your Client Need an OSINT Review?What Are You Looking For?Where Do You Find It?OSINT ToolsGrabbing Email Addresses from GoogleGoogle Dorking the ShadowsA Brief Introduction to Passwd and Shadow FilesThe Google Hacking DatabaseHave You Been “Pwned” Yet?OSINT Framework Recon-ngRecon-ng Under the HoodHarvesting the WebDocument MetadataMaltegoSocial Media NetworksShodanProtecting Against OSINTSummary
Chapter 5: The Domain Name System
The Implications of Hacking DNSA Brief History of DNSThe DNS HierarchyA Basic DNS QueryAuthority and ZonesDNS Resource RecordsBIND9DNS Hacking ToolkitFinding HostsFinding the SOA with DigHacking a Virtual Name ServerPort Scanning with NmapDigging for InformationInformation Leak CHAOSZone Transfer RequestsInformation-Gathering ToolsSearching for Vulnerabilities and ExploitsDNS Traffic AmplificationMetasploitCarrying Out a Denial-of-Service AttackDoS Attacks with MetasploitDNS SpoofingDNS Cache PoisoningDNS Cache SnoopingDNSSECFuzzingSummary
Chapter 6: Electronic Mail
The Email ChainMessage HeadersDelivery Status NotificationsThe Simple Mail Transfer ProtocolSender Policy FrameworkScanning a Mail ServerMail SoftwareUser Enumeration via FingerBrute-Forcing the Post OfficeThe Nmap Scripting EngineCVE-2014-0160: The Heartbleed BugExploiting CVE-2010-4345Exploiting CVE-2017-7692Summary
Chapter 7: The World Wide Web of Vulnerabilities
The World Wide WebThe Hypertext Transfer ProtocolUniform Resource IdentifiersLAMP: Linux, Apache, MySQL, and PHPCreepy Crawlers and SpidersThe Web Server Hacker's ToolkitPort Scanning a Web ServerManual HTTP RequestsWeb Vulnerability ScanningGuessing Hidden Web ContentUploading FilesHTTP AuthenticationCommon Gateway InterfaceShellshockSSL, TLS, and HeartbleedWeb Administration InterfacesWeb ProxiesPrivilege EscalationSummary

Chapter 8: Virtual Private Networks
What Is a VPN?Internet Protocol SecurityInternet Key ExchangeTransport Layer Security and VPNsUser Databases and AuthenticationThe NSA and VPNsThe VPN Hacker's ToolkitVPN Hacking MethodologyPort Scanning a VPN ServerIKE-scanOpenVPNLDAPOpenVPN and ShellshockExploiting CVE-2017-5618Summary
Chapter 9: Files and File Sharing
What Is Network-Attached Storage?File PermissionsNAS Hacking ToolkitPort Scanning a File ServerThe File Transfer ProtocolThe Trivial File Transfer ProtocolRemote Procedure CallsServer Message BlockRsyncNetwork File SystemNFS Privilege EscalationSearching for Useful FilesSummary
Chapter 10: UNIX
UNIX System AdministrationSolarisUNIX Hacking ToolboxPort Scanning SolarisTelnetSecure ShellRPCR-servicesThe Simple Network Management ProtocolThe Common UNIX Printing SystemThe X Window SystemCron and Local FilesThe Common Desktop EnvironmentSummary
Chapter 11: Databases
Types of DatabasesStructured Query LanguageUser-Defined FunctionsThe Database Hacker's ToolboxCommon Database ExploitationPort Scanning a Database ServerMySQLPostgreSQLEscaping Database SoftwareOracle DatabaseMongoDBRedisPrivilege Escalation via DatabasesSummary
Chapter 12: Web Applications
The OWASP Top 10The Web Application Hacker's ToolkitPort Scanning a Web Application ServerUsing an Intercepting ProxyManual Browsing and MappingSpideringIdentifying Entry PointsWeb Vulnerability ScannersFinding VulnerabilitiesInjectionBroken AuthenticationSensitive Data ExposureXML External EntitiesBroken Access ControlsSecurity MisconfigurationCross-Site ScriptingInsecure DeserializationKnown VulnerabilitiesInsufficient Logging and MonitoringPrivilege EscalationSummary
Chapter 13: Microsoft Windows
Hacking Windows vs. LinuxSetting Up a Windows VMA Windows Hacking ToolkitWindows and the NSAPort Scanning Windows ServerMicrosoft DNSInternet Information ServicesKerberosGolden TicketsNetBIOSLDAPServer Message BlockETERNALBLUEEnumerating UsersMicrosoft RPCTask SchedulerRemote DesktopThe Windows ShellPowerShellMeterpreterHash DumpingPassing the HashPrivilege EscalationGetting SYSTEMAlternative Payload Delivery MethodsBypassing Windows DefenderSummary
Chapter 14: Passwords
HashingThe Password Cracker's ToolboxCrackingHash Tables and Rainbow TablesAdding SaltInto the /etc/shadowDifferent Hash TypesPseudo-hashingMicrosoft HashesGuessing PasswordsThe Art of CrackingRandom Number GeneratorsSummary
Chapter 15: Writing Reports
What Is a Penetration Test Report?Common Vulnerabilities Scoring SystemReport Writing as a SkillWhat Should a Report Include?Executive SummaryTechnical SummaryAssessment ResultsSupporting InformationTaking NotesProofreadingDeliverySummary
Index
End User License Agreement

Overview

A fast, hands-on introduction to offensive hacking techniques

Hands-On Hacking teaches readers to see through the eyes of their adversary and apply hacking techniques to better understand real-world risks to computer networks and data. Readers will benefit from the author's years of experience in the field hacking into computer networks and ultimately training others in the art of cyber-attacks. This book holds no punches and explains the tools, tactics and procedures used by ethical hackers and criminal crackers alike.

We will take you on a journey through a hacker’s perspective when focused on the computer infrastructure of a target company, exploring how to access the servers and data. Once the information gathering stage is complete, you’ll look for flaws and their known exploits—including tools developed by real-world government financed state-actors.

• An introduction to the same hacking techniques that malicious hackers will use against an organization

• Written by infosec experts with proven history of publishing vulnerabilities and highlighting security flaws

• Based on the tried and tested material used to train hackers all over the world in the art of breaching networks

• Covers the fundamental basics of how computer networks are inherently vulnerable to attack, teaching the student how to apply hacking skills to uncover vulnerabilities

We cover topics of breaching a company from the external network perimeter, hacking internal enterprise systems and web application vulnerabilities. Delving into the basics of exploitation with real-world practical examples, you won’t find any hypothetical academic only attacks here. From start to finish this book will take the student through the steps necessary to breach an organization to improve its security.

Written by world-renowned cybersecurity experts and educators, Hands-On Hacking teaches entry-level professionals seeking to learn ethical hacking techniques. If you are looking to understand penetration testing and ethical hacking, this book takes you from basic methods to advanced techniques in a structured learning format.

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Publisher Resources

ISBN: 9781119561453Purchase book

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills