Practical web penetration testing : secure web applications using burp suite, nmap, metasploit, and more / by Gus Khawaja.

Format:

Book

Author/Creator:

Khawaja, Gus, author.

Language:

English

Subjects (All):

Metasploit (Electronic resource).

Web databases.

Database design.

Physical Description:

1 online resource (283 pages)

Edition:

1st edition

Place of Publication:

Birmingham ; Mumbai : Packt Publishing, 2018.

System Details:

text file

Summary:

Learn how to execute web application penetration testing end-to-end About This Book Build an end-to-end threat model landscape for web application security Learn both web application vulnerabilities and web intrusion testing Associate network vulnerabilities with a web application infrastructure Who This Book Is For Practical Web Penetration Testing is for you if you are a security professional, penetration tester, or stakeholder who wants to execute penetration testing using the latest and most popular tools. Basic knowledge of ethical hacking would be an added advantage. What You Will Learn Learn how to use Burp Suite effectively Use Nmap, Metasploit, and more tools for network infrastructure tests Practice using all web application hacking tools for intrusion tests using Kali Linux Learn how to analyze a web application using application threat modeling Know how to conduct web intrusion tests Understand how to execute network infrastructure tests Master automation of penetration testing functions for maximum efficiency using Python In Detail Companies all over the world want to hire professionals dedicated to application security. Practical Web Penetration Testing focuses on this very trend, teaching you how to conduct application security testing using real-life scenarios. To start with, you'll set up an environment to perform web application penetration testing. You will then explore different penetration testing concepts such as threat modeling, intrusion test, infrastructure security threat, and more, in combination with advanced concepts such as Python scripting for automation. Once you are done learning the basics, you will discover end-to-end implementation of tools such as Metasploit, Burp Suite, and Kali Linux. Many companies deliver projects into production by using either Agile or Waterfall methodology. This book shows you how to assist any company with their SDLC approach and helps you on your journey to becoming an application security specialist. By the end of this book, you will have hands-on knowledge of using different tools for penetration testing. Style and approach In this book, you will learn and understand the workflow of application security testing. Starting from analysis using threat modeling until the testing phase and before the web project goes into production, you will be able conduct effective penetrating testing using web intrusion tests , network infrastructure tests, and code review. Downloading the example ...

Contents:

Cover

Title Page

Copyright and Credits

Packt Upsell

Contributors

Table of Contents

Preface

Chapter 1: Building a Vulnerable Web Application Lab

Downloading Mutillidae

Installing Mutillidae on Windows

Downloading and installing XAMPP

Mutillidae installation

Installing Mutillidae on Linux

Using Mutillidae

User registration

Showing hints and setting security levels

Application reset

OWASP Top 10

Summary

Chapter 2: Kali Linux Installation

Introducing Kali Linux

Installing Kali Linux from scratch

Installing Kali on VMware

Installing Kali on VirtualBox

Bridged versus NAT versus Internal Network

Updating Kali Linux

Chapter 3: Delving Deep into the Usage of Kali Linux

The Kali filesystem structure

Handling applications and packages

The Advanced Packaging Tool

Debian's package management system

Using dpkg commands

Handling the filesystem in Kali

File compression commands

Security management

Secure shell protocol

Configuring network services in Kali

Setting a static IP on Kali

Checking active connections in Kali

Process management commands

Htop utility

Popular commands for process management

System info commands

Chapter 4: All About Using Burp Suite

An introduction to Burp Suite

A quick example

Visualizing the application structure using Burp Target

Intercepting the requests/responses using Burp Proxy

Setting the proxy in your browser

BURP SSL certificate

Burp Proxy options

Crawling the web application using Burp Spider

Manually crawling by using the Intruder tool

Automated crawling and finding hidden spots

Looking for web vulnerabilities using the scanner

Replaying web requests using the Repeater tab.

Fuzzing web requests using the Intruder tab

Intruder attack types

Practical examples

Installing third-party apps using Burp Extender

Chapter 5: Understanding Web Application Vulnerabilities

File Inclusion

Local File Inclusion

Remote File Inclusion

Cross-Site Scripting

Reflected XSS

Stored XSS

Exploiting stored XSS using the header

DOM XSS

JavaScript validation

Cross-Site Request Forgery

Step 01 - victim

Step 02 - attacker

Results

SQL Injection

Authentication bypass

Extracting the data from the database

Error-based SQLi enumeration

Blind SQLi

Command Injection

1 - Injection

2 - Broken Authentication

3 - Sensitive Data

4 - XML External Entities

5 - Broken Access Control

6 - Security Misconfiguration

7 - Cross-Site Scripting (XSS)

8 - Insecure Deserialization

9 - Using Components with Known Vulnerabilities

10 - Insufficient Logging &amp

Monitoring

Chapter 6: Application Security Pre-Engagement

Introduction

The first meeting

The day of the meeting with the client

Non-Disclosure Agreement

Kick-off meeting

Time and cost estimation

Statement of work

Penetration Test Agreement

External factors

Chapter 7: Application Threat Modeling

Software development life cycle

Application Threat Modeling at a glance

Application Threat Modeling in real life

Application Threat Modeling document parts

Data Flow Diagram

External dependencies

Trust levels

Entry points

Assets

Test strategies

Security risks

Practical example

xBlog Threat Modeling

Scope

Threat Modeling

Project information

Threats list

Spoofing - authentication

Tampering - integrity.

Repudiation

Information disclosure - confidentiality

Denial of service - availability

Elevation of privilege - authorization

Chapter 8: Source Code Review

Programming background

Enterprise secure coding guidelines

Static code analysis - manual scan versus automatic scan

Secure coding checklist

Chapter 9: Network Penetration Testing

Passive information gathering - reconnaissance - OSINT

Web search engines

Google Hacking Database - Google dorks

Online tools

Kali Linux tools

WHOIS lookup

Domain name system - DNS enumeration

Gathering email addresses

Active information gathering - services enumeration

Identifying live hosts

Identifying open ports/services

Service probing and enumeration

Vulnerability assessment

OpenVas

Exploitation

Finding exploits

Listener setup

Generating a shell payload using msfvenom

Custom shells

Privilege escalation

File transfers

Using PowerShell

Using VBScript

Administrator or root

Chapter 10: Web Intrusion Tests

Web Intrusion Test workflow

Identifying hidden contents

Common web page checklist

Special pages checklist

Reporting

Common Vulnerability Scoring System - CVSS

First case - SQLi

Second case - Reflected XSS

Report template

Chapter 11: Pentest Automation Using Python

Python IDE

Downloading and installing PyCharm

PyCharm quick overview

Penetration testing automation

Automate.py in action

Utility functions

Service enumeration

DTO service class

The scanner core

Appendix A: Nmap Cheat Sheet

Target specification

Host discovery

Scan types and service versions

Port specification and scan order

Script scan

Timing and performance

Firewall/IDS evasion and spoofing

Output.

Appendix B: Metasploit Cheat Sheet

Metasploit framework

Using the database

More database-related commands

Getting around

Using modules

Miscellaneous

msfvenom

Listener scripting

Meterpreter

Appendix C: Netcat Cheat Sheet

Netcat command flags

Appendix D: Networking Reference Section

Network subnets

Port numbers and services

Appendix E: Python Quick Reference

Quick Python language overview

Basics of Python

Operators

Arithmetic calculation operators

Assignment operators

Comparison operators

Membership and identity operators

Binary operators

Making an if decision

Variables

Strings

Escape String Characters

Numbers

Lists

Tuples

Dictionary

Other Books You May Enjoy

Index.

Notes:

Description based on print version record.

ISBN:

9781788628723

1788628721

OCLC:

1043655682