Ethical Hacking Workshop : Explore a Practical Approach to Learning and Applying Ethical Hacking Techniques for Effective Cybersecurity / Rishalin Pillay and Mohammed Abutheraa.

Format:

Book

Author/Creator:

Pillay, Rishalin, author.

Abutheraa, Mohammed, author.

Language:

English

Subjects (All):

Penetration testing (Computer security).

Physical Description:

1 online resource (220 pages)

Edition:

First edition.

Place of Publication:

Birmingham, England : Packt Publishing, [2023]

Biography/History:

Pillay Rishalin: Rishalin Pillay is an Offensive Cybersecurity expert who holds a number of awards and certifications from multiple companies in the Cybersecurity industry. He is well known for his contributions to online learning courses related to Red Teaming and as the author of Learn Penetration Testing. He holds Content Publisher Gold and Platinum awards for his contributions made towards the Cybersecurity Industry, including the Events Speaker Gold award for influential public speaking at Tier-1 business events. Abutheraa Mohammed: Mohammed Abutheraa is Cybersecurity specialist who has over 15 years of experience in IT security, risk management, security infrastructure, and technology implementation in both private and public sector environments. He worked as Incident Response and Remediation Advisor and supported customers remediating against major incidents in the last years. He has experience in Threat Intelligence and Proactive Services like Vulnerability Assessments and Red / Purple Teaming experiences.

Summary:

Get a hands-on training and experience in tools, techniques, and best practices for effective ethical hacking to combat cyber threats at any scaleKey FeaturesUse the ethical hacking methodology and thought process to perform a successful ethical hackExplore the various stages of an ethical hack and the tools related to each phasePurchase of the print or Kindle book includes a free PDF eBookBook DescriptionThe Ethical Hacking Workshop will teach you how to perform ethical hacking and provide you with hands-on experience using relevant tools. By exploring the thought process involved in ethical hacking and the various techniques you can use to obtain results, you'll gain a deep understanding of how to leverage these skills effectively. Throughout this book, you'll learn how to conduct a successful ethical hack, how to use the tools correctly, and how to interpret the results to enhance your environment's security. Hands-on exercises at the end of each chapter will ensure that you solidify what you’ve learnt and get experience with the tools. By the end of the book, you'll be well-versed in ethical hacking and equipped with the skills and knowledge necessary to safeguard your enterprise against cyber-attacks.What you will learnUnderstand the key differences between encryption algorithms, hashing algorithms, and cryptography standardsCapture and analyze network trafficGet to grips with the best practices for performing in-cloud reconGet start with performing scanning techniques and network mappingLeverage various top tools to perform privilege escalation, lateral movement, and implant backdoorsFind out how to clear tracks and evade detectionWho this book is forThis book is for cybersecurity professionals who already work as part of a security team, blue team, purple team or as a security analyst and want to become familiar with the same skills and tools that potential attackers may use to breach your system and identify security vulnerabilities. A solid understanding of cloud computing and networking is a prerequisite.

Contents:

Cover

Title Page

Copyright and Credits

Dedicated

Contributors

Preface

Table of Contents

Part 1: Network Fundamentals

Chapter 1: Networking Primer

Technical requirements

Why is networking crucial?

Networking concepts on-premises and in the cloud

Packets

MAC address

IP addresses

Cloud computing

Infrastructure-as-a-Service

Software-as-a-Service

Platform-as-a-Service

Networking tools and attacks

Packet capturing

MAC address spoofing

ARP spoofing

Setting up the lab

Putting what you have learned into practice

Best practices

Summary

Chapter 2: Capturing and Analyzing Network Traffic

Capturing network traffic

Capturing and analyzing wired network traffic

Working with network traffic in the cloud

Chapter 3: Cryptography Primer

What is encryption?

The Caesar cipher

The Vigenère cipher

Overview of common encryption ciphers

Encryption algorithms

Symmetric encryption

Asymmetric encryption

Common types of encryption attacks

Encryption in the cloud

Part 2: Breaking and Entering

Chapter 4: Reconnaissance

What is reconnaissance?

Passive information gathering

Active information gathering

Performing recon on wireless networks

Performing recon in the cloud

Gitleaks

CloudBrute

DNS domain enumeration

Performing OSINT with Shodan

Conducting wireless reconnaissance

Chapter 5: Scanning

Scanning techniques

Port scanning

Understanding Nmap

Vulnerability scanning

Nmap vulnerability scanning.

OpenVAS

Wi-Fi and cloud scanning

Wireless scanning

Scanning exercises

Chapter 6: Gaining Access

Social engineering

Phishing

IP address sniffing and spoofing

Wireshark

macchanger

Code-based attacks

Buffer overflow

Format string attacks

Exploiting services

Password cracking

Pass the hash

Web app attacks

Exploiting cloud services

Exercises on gaining access

Part 3: Total Immersion

Chapter 7: Post-Exploitation

Privilege escalation

unix-privsec-check

LinPEAS

Lateral movement

Evil-WinRM

Backdoors and Trojan horses

Trojan horse

Rootkits

User-mode rootkits

Kernel-mode rootkits

Rootkit scanning

Maintaining access in the cloud environment

Post-exploitation exercises

Privilege escalation and lateral movement

Embedded software backdoor

Index

Other Books You May Enjoy.

Notes:

Includes index.

Description based on print version record.

ISBN:

1-80461-304-5

OCLC:

1457222004