book

Metasploit 5.0 for Beginners - Second Edition

Name: Metasploit 5.0 for Beginners - Second Edition
Author: Sagar Rahalkar
ISBN: 9781838982669

by Sagar Rahalkar

April 2020

Beginner

246 pages

4h 10m

English

Packt Publishing

Read now

Unlock full access

Metasploit 5.0 for Beginners Second Edition
Why subscribe?ContributorsAbout the authorAbout the reviewersPackt is searching for authors like you
Preface
Who this book is forWhat this book coversTo get the most out of this bookDownload the color imagesConventions usedGet in touchReviews
Section 1: Introduction and Environment Setup
Chapter 1: Introduction to Metasploit and Supporting Tools
Technical requirementsThe importance of penetration testingUnderstanding the difference between vulnerability assessments and penetration testingThe need for a penetration testing frameworkIntroduction to MetasploitIntroduction to new features in Metasploit 5.0When to use MetasploitMaking Metasploit effective and powerful using supplementary toolsNessusNMAPw3afArmitageSummaryExerciseFurther reading
Chapter 2: Setting Up Your Environment
Using Metasploit on a Kali Linux virtual machineInstalling Metasploit on WindowsInstalling Metasploit on LinuxSetting up DockerSetting up vulnerable targets in a VMSetting up the vulnerability emulatorSummaryExercises
Chapter 3: Metasploit Components and Environment Configuration
Technical requirementsAnatomy and structure of MetasploitMetasploit components and environment configurationAuxiliariesPayloadsExploitsEncodersNOPsPostEvasionGetting started with msfconsoleVariables in MetasploitUpdating the Metasploit FrameworkSummaryExerciseFurther reading
Section 2: Practical Metasploit
Chapter 4: Information Gathering with Metasploit
Technical requirementsInformation gathering and enumeration on various protocolsTransmission Control ProtocolUser Datagram ProtocolFile Transfer ProtocolServer Message BlockHypertext Transfer ProtocolSimple Mail Transfer ProtocolSecure ShellDomain Name SystemRemote Desktop ProtocolPassword sniffing with MetasploitAdvanced search using ShodanSummaryExercisesFurther reading
Chapter 5: Vulnerability Hunting with Metasploit
Technical requirementsManaging the databaseManaging workspacesImporting scansBacking up the databaseNMAPNMAP scanning approachNessusScanning using Nessus from within msfconsoleVulnerability detection with Metasploit auxiliariesAuto-exploitation with db_autopwnExploring post exploitationWhat is Meterpreter?Introduction to msf utilitiesmsf-exe2vbsmsf-exe2vbamsf-pdf2xdpmsf-msf_irbmsf-pattern_createmsf-virustotalmsf-makeiplistSummaryExercisesFurther reading
Chapter 6: Client-Side Attacks with Metasploit
Understanding the need for client-side attacksWhat are client-side attacks?Exploring the msfvenom utilityGenerating a payload with msfvenomUsing MSFvenom Payload Creator (MSFPC)Social engineering with MetasploitGenerating malicious PDFsCreating infectious media drivesUsing browser autopwnSummaryExercises

Chapter 7: Web Application Scanning with Metasploit
Technical requirementsSetting up a vulnerable web application Setting up Hackazon on DockerSetting up OWASP Juice ShopWeb application scanning using WMAPMetasploit auxiliaries for web application enumeration and scanningSummaryExercise
Chapter 8: Antivirus Evasion and Anti-Forensics
Technical requirementsUsing encoders to avoid antivirus detectionUsing the new evasion moduleUsing packagers and encryptersUnderstanding what a sandbox isUsing Metasploit for anti-forensicsTimestompClearevSummaryExercisesFurther reading
Chapter 9: Cyber Attack Management with Armitage
Technical requirementsWhat is Armitage?Starting the Armitage consoleScanning and enumerationFinding and launching attacksSummaryExerciseFurther reading
Chapter 10: Extending Metasploit and Exploit Development
Technical requirementsUnderstanding exploit development conceptsUnderstanding buffer overflowUnderstanding fuzzersUnderstanding exploit templates and mixinsUnderstanding Metasploit mixinsAdding external exploits to MetasploitSummaryExercisesFurther reading
Chapter 11: Case Studies
Case study 1Case study 2SummaryExercisesFurther reading
Other Books You May Enjoy
Leave a review - let other readers know what you think

Content preview from Metasploit 5.0 for Beginners - Second Edition

Chapter 5: Vulnerability Hunting with Metasploit

In the last chapter, you learned various techniques of information gathering and enumeration. Now that we have gathered information about our target system, it's time to check whether the target system is vulnerable and whether we can exploit it in reality. In this chapter, we will cover the following topics:

Managing the database
Vulnerability detection with Metasploit auxiliaries
Auto-exploitation with db_autopwn
Exploring post-exploitation
Introduction to msf utilities

Technical requirements

The following software are required:

Kali Linux
The Metasploit Framework
NMAP
Nessus
Metasploitable 2

Managing the database

As we have seen so far, the Metasploit Framework is a tightly coupled collection ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Publisher Resources

ISBN: 9781838982669

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design