Applied network security : master the art of detecting and averting advanced network security attacks and techniques / Arthur Salmon, Warun Levesque, Michael McLafferty.

Format:

Book

Author/Creator:

Salmon, Arthur, author.

Levesque, Warun, author.

McLafferty, Michael, author.

Language:

English

Subjects (All):

Computer networks--Security measures.

Computer networks.

Business enterprises--Computer networks--Security measures.

Business enterprises.

Physical Description:

1 online resource (320 pages) : illustrations

Edition:

1st edition

Place of Publication:

Birmingham, England ; Mumbai, [India] : Packt, 2017.

System Details:

text file

Biography/History:

Levesque Warun: Warun Levesque has worked for various technical companies and projects over the past five years in information technology and network security. He began his academic path back in 2011, where his focus centered around mobile application development and web application programming. During this time, he worked on the development of many guides and educational resources contributing to the cyber security community. Warun has also accepted various contracts including one from a major IT Corporation to provide technical support and guidance to set up network and assistance for businesses nationwide. For the past couple of years, he has taken the role of a consultant for various companies, including institutional support for cyber security related training and classes. He is also the cofounder of a community of ethical hackers where he continues to learn and develop both his skills and effective guides for offensive, defensive, and mitigation in cyber security. Salmon Arthur: Arthur Salmon is a lead security professional for Rex Technology Services, Las Vegas, NV. He is the program director of a community college for their cyber security program. Arthur currently holds a master's degree in network and communication management focusing on security. He is also finishing up his dissertation for a PhD in information security assurance. He has over 80 IT certifications, including his VMware VCP, Cisco CCNP: RnS/CCDP, and numerous CCNAs (RnS, security, design, voice, and video collaborations to name a few). He also holds other certifications from vendors, such as Microsoft, CompTIA, Juniper, Six Sigma, EMC, ISC2, Encase, and so on. Currently, hes awaiting results for his exams for ISC2 CISSP, CEH, and forensic investigator. He has worked in the IT sector for over 15 years. He is currently working on writing and collaborating new books, articles, or any other learning material. McLafferty Michael: Michael McLafferty has been researching on cyber security and applied ethical hacking for over 6 years. His interest in cyber security started in 2010. At the time, he was creating search engine optimization scripts for various small businesses. His clients would also ask him to secure their websites, which led him to find his passion in cyber security instead of search engine optimization. In 2012, he became a private cyber security consultant for both individuals and small businesses. He would provide network and endpoint security advice as well as social engineering awareness training to employees and individuals. He is also a paid cyber security researcher, sponsored by local businesses to further the advancement of cyber security methods and applied knowledge. He is the co-founder of an open society of ethical hackers that meets weekly to discuss and apply new cyber security skills. They have full access to both a lab and cutting-edge ethical hacking equipment, to develop new methods in offensive security. He is also an inventor. He and his business partner have patents pending on various cyber security tools and software. They continue with their research with great passion and drive. He is committed to reshaping and setting new standards in the world of cyber security. With the level of collaboration from his colleagues, he firmly believes that they can achieve this.

Summary:

Master the art of detecting and averting advanced network security attacks and techniques About This Book Deep dive into the advanced network security attacks and techniques by leveraging tools such as Kali Linux 2, MetaSploit, Nmap, and Wireshark Become an expert in cracking WiFi passwords, penetrating anti-virus networks, sniffing the network, and USB hacks This step-by-step guide shows you how to confidently and quickly detect vulnerabilities for your network before the hacker does Who This Book Is For This book is for network security professionals, cyber security professionals, and Pentesters who are well versed with fundamentals of network security and now want to master it. So whether you're a cyber security professional, hobbyist, business manager, or student aspiring to becoming an ethical hacker or just want to learn more about the cyber security aspect of the IT industry, then this book is definitely for you. What You Will Learn Use SET to clone webpages including the login page Understand the concept of Wi-Fi cracking and use PCAP file to obtain passwords Attack using a USB as payload injector Familiarize yourself with the process of trojan attacks Use Shodan to identify honeypots, rogue access points, vulnerable webcams, and other exploits found in the database Explore various tools for wireless penetration testing and auditing Create an evil twin to intercept network traffic Identify human patterns in networks attacks In Detail Computer networks are increasing at an exponential rate and the most challenging factor organisations are currently facing is network security. Breaching a network is not considered an ingenious effort anymore, so it is very important to gain expertise in securing your network. The book begins by showing you how to identify malicious network behaviour and improve your wireless security. We will teach you what network sniffing is, the various tools associated with it, and how to scan for vulnerable wireless networks. Then we'll show you how attackers hide the payloads and bypass the victim's antivirus. Furthermore, we'll teach you how to spoof IP / MAC address and perform an SQL injection attack and prevent it on your website. We will create an evil twin and demonstrate how to intercept network traffic. Later, you will get familiar with Shodan and Intrusion Detection and will explore the features and tools associated with it. Toward the end, we cover tools such as Yardstick, Ubertooth, Wifi Pineapple, and A...

Contents:

Cover

Copyright

Credits

About the Authors

About the Reviewer

www.PacktPub.com

Customer Feedback

Table of Contents

Preface

Chapter 1: Introduction to Network Security

Murphy's law

Hackers (and their types) defined

Hacker tools

The hacking process

Ethical hacking issues

Current technologies

Recent events and statistics of network attacks

Our defense

Security for individuals versus companies

Wi-Fi vulnerabilities

Knowns and unknowns

False positives

Mitigation against threats

Building an assessment

Summary

References

Chapter 2: Sniffing the Network

What is network sniffing?

Why network sniffing is important

Scan a single IP

Scan a host

Scan a range of IPs

Scan a subnet

Nmap port selection

Scan a single port

Scan a range of ports

Scan 100 most common ports (fast)

Scan all 65535 ports

Nmap port scan types

Scan using TCP SYN scan (default)

Scan using TCP connect

Service and OS detection

Detect OS and services

Standard service detection

More aggressive service detection

Lighter banner-grabbing detection

Nmap output formats

Save default output to file

Save in all formats

Scan using a specific NSE script

Scan with a set of scripts

Lab 1-a scan to search for DDoS reflection UDP services

Using Wireshark filters

Wireshark filter cheat sheet

Lab 2

Sparta

Brute-force passwords

Lab 3-scanning

Scanning a subnet

Spoofing and decoy scans

Evading firewalls

Gathering version info

UDP scan

The reason switch

Using a list

Output to a file

Commands

Starting the listener

Countermeasures

Chapter 3: How to Crack Wi-Fi Passwords

Why should we crack our own Wi-Fi?

What's the right way to do it?

The method

The requirements

What is packet injection?.

Wi-Fi cracking tools

The steps

The Transmission Control Protocol (TCP) handshake

The password lists

How to make a strong password

The short version (a cheat-sheet for the aircrack-ng suite)

Chapter 4: Creating a RAT Using Msfvenom

Remote Access Trojans

Ways to disguise your RAT though Metasploit

PDF-embedded RAT

MS Word-embedded RAT

Android RAT

Your defence

Chapter 5: Veil Framework

Veil-Evasion

Veil-Pillage

How do hackers hide their attack?

Intrusion with a PDF

The scenario

Veil-PowerTools

What is antivirus protection?

What are some vulnerabilities in antivirus protection?

Evasion and antivirus signatures

Chapter 6: Social Engineering Toolkit and Browser Exploitation

Social engineering

What are web injections?

How SQL injections work

Cross site scripting (XSS) attacks

Preventative measures against XSS attacks

How to reduce your chances of being attacked

Browser exploitation with BeEF

Browser hijacking

BeEF with BetterCap

BeEF with man-in-the-middle framework (MITMF)

BeEF with SET

Chapter 7: Advanced Network Attacks

What is an MITM attack?

Related types of attacks

Examples of MITM

Tools for MITM attacks

Installing MITMF using Kali Linux

Chapter 8: Passing and Cracking the Hash

What is a hash?

Authentication protocols

Cryptographic hash functions

How do hackers obtain the hash?

What tools are used to get the hash?

How are hashes cracked?

How do pass the hash attacks impact businesses?

What defences are there against hash password attacks?

Links to download tools

Chapter 9: SQL Injection

What is SQL and how does it work?

SQL command examples

SQL injection.

Examples of SQL injection attacks

Ways to defend against SQL injection attacks

Attack vectors for web applications

Bypassing authentication

Bypass blocked and filtered websites

Finding vulnerabilities from a targeted sites

Extracting data with SQLmap

Hunting for web app vulnerabilities with Open Web Application Security Project (OWASP) ZAP

Chapter 10: Scapy

Scapy

Creating our first packet

Sending and receiving

Layering

Viewing the packet

Handling files

The TCP three way handshake

SYN scan

A DNS query

Malformed packets

Ping of death

Teardrop attack (aka Nestea)

ARP cache poisoning

ARP poisoning commands

ACK scan

TCP port scanning

VLAN hopping

Wireless sniffing

OS fingerprinting ISN

Sniffing

Passive OS detection

Chapter 11: Web Application Exploits

Web application exploits

What tools are used for web application penetration testing?

What is Autopwn?

Using Autopwn2

What is BeEF and how to use it?

Defenses against web application attacks

Chapter 12: Evil Twins and Spoofing

What is an evil twin?

What is address spoofing?

What is DNS spoofing?

What tools are used for setting up an evil twin?

The dangers of public Wi-Fi and evil twins

How to detect an evil twin?

Chapter 13: Injectable Devices

A deeper look into USB

A possible threat

An evil USB

How does the Rubber Ducky work?

Disabling ports

A KeyGrabber?

What the glitch?

Chapter 14: The Internet of Things

What is the Internet of Things?

IOT vulnerabilities and cyber security

IOT and botnets

Sources

Chapter 15: Detection Systems

IDS

IPS

Host based

Network-based

Physical

Summary of differences

Why?

Who and when?.

Security Information and Event Management (SIEM)

Splunk

Alert status

IDS versus IPS

Snort as an IPS

How?

Lab 1-installing Snort and creating ICMP rules lab

Lab 2-create the following snort.conf and icmp.rules files

Rule options

Lab 3-execute Snort

Show log alert

Alert explanation

Lab 4-execute Snort as Daemon

Chapter 16: Advance Wireless Security Lab Using the Wi-Fi Pineapple Nano/Tetra

The history of Wi-Fi - the WLAN standard

Wireless vulnerability

The Wi-Fi Pineapple

For penetration testing

Lab 1-how to set up

Getting connected

Performing a scan

Getting connected, managing your network, and broadcasting Wi-Fi

Reporting data

Logging data with Pineapple

Enabling the landing page

Chapter 17: Offensive Security and Threat Hunting

What is offensive security?

What tools are used for offensive security?

SET browser exploit lab

Threat hunting platforms

Using the Pineapple for offensive security

Lab 1-setting up an Evil Portal on the Pineapple

Index.

Notes:

Includes index.

Description based on online resource; title from PDF title page (ebrary, viewed May 19, 2017).

ISBN:

9781786469687

1786469685

OCLC:

987010077