Chapter 5: Testing Services with Metasploit

Having gathered exploit development experience in Metasploit, let's now talk about testing various specialized services. It is likely that, during your career as a penetration tester, you will come across a testable environment that only requires testing to be performed within a service such as databases, Voice Over Internet Protocol (VOIP), or Supervisory Control and Data Acquisition (SCADA). In this chapter, we will look at the various developing strategies to use when carrying out penetration tests on these services. In this chapter, we will cover the following topics:

The fundamentals of testing SCADA systems
Database exploitation
Testing VOIP services

Service-based penetration testing requires ...

Get Mastering Metasploit - Fourth Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Mastering Metasploit - Fourth Edition by Nipun Jaswal

Chapter 5: Testing Services with Metasploit

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly