10 Exploitation

The key purpose of a penetration test is to exploit a data system and gain the credentials or direct access to the data of interest. It is exploitation that gives penetration testing its meaning. In this chapter, we will examine various means of exploiting systems, including both public exploits and available exploit frameworks. By the end of this chapter, you should be able to understand the following:

The Metasploit Framework
The exploitation of targets using Metasploit
Using public exploits
Developing sample Windows-specific exploits
Empire PowerShell Framework

The Metasploit Framework

The Metasploit Framework (MSF) is an open-source tool designed to facilitate penetration testing. Written in the Ruby programming language, ...

Get Mastering Kali Linux for Advanced Penetration Testing - Fourth Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Mastering Kali Linux for Advanced Penetration Testing - Fourth Edition by Vijay Kumar Velu

10

Exploitation

The Metasploit Framework

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly