Book description
Master the art of identifying vulnerabilities within the Windows OS and develop the desired solutions for it using Kali Linux.
Key Features
- Identify the vulnerabilities in your system using Kali Linux 2018.02
- Discover the art of exploiting Windows kernel drivers
- Get to know several bypassing techniques to gain control of your Windows environment
Book Description
Windows has always been the go-to platform for users around the globe to perform administration and ad hoc tasks, in settings that range from small offices to global enterprises, and this massive footprint makes securing Windows a unique challenge. This book will enable you to distinguish yourself to your clients.
In this book, you'll learn advanced techniques to attack Windows environments from the indispensable toolkit that is Kali Linux. We'll work through core network hacking concepts and advanced Windows exploitation techniques, such as stack and heap overflows, precision heap spraying, and kernel exploitation, using coding principles that allow you to leverage powerful Python scripts and shellcode.
We'll wrap up with post-exploitation strategies that enable you to go deeper and keep your access. Finally, we'll introduce kernel hacking fundamentals and fuzzing testing, so you can discover vulnerabilities and write custom exploits.
By the end of this book, you'll be well-versed in identifying vulnerabilities within the Windows OS and developing the desired solutions for them.
What you will learn
- Get to know advanced pen testing techniques with Kali Linux
- Gain an understanding of Kali Linux tools and methods from behind the scenes
- See how to use Kali Linux at an advanced level
- Understand the exploitation of Windows kernel drivers
- Understand advanced Windows concepts and protections, and how to bypass them using Kali Linux
- Discover Windows exploitation techniques, such as stack and heap overflows and kernel exploitation, through coding principles
Who this book is for
This book is for penetration testers, ethical hackers, and individuals breaking into the pentesting role after demonstrating an advanced skill in boot camps. Prior experience with Windows exploitation, Kali Linux, and some Windows debugging tools is necessary
Table of contents
- Title Page
- Copyright and Credits
- Dedication
- Packt Upsell
- Contributors
- Preface
- Bypassing Network Access Control
- Sniffing and Spoofing
- Windows Passwords on the Network
- Advanced Network Attacks
- Cryptography and the Penetration Tester
- Advanced Exploitation with Metasploit
- Stack and Heap Memory Management
- Windows Kernel Security
- Weaponizing Python
-
Windows Shellcoding
- Technical requirements
-
Taking out the guesswork – heap spraying
- Memory allocation – stack versus heap
- Shellcode whac-a-mole – heap spraying fundamentals
- Shellcode generation for the Java vulnerability
- Creating the malicious website to exploit Java
- Debugging Internet Explorer with WinDbg
- Examining memory after spraying the heap
- Fine-tuning your attack and getting a shell
- Understanding Metasploit shellcode delivery
- Injection with Backdoor Factory
- Summary
- Questions
- Further reading
-
Bypassing Protections with ROP
- Technical requirements
- DEP and ASLR – the intentional and the unavoidable
- Introducing return-oriented programming
- Getting hands-on with the return-to-PLT attack
- Summary
- Questions
- Further reading
- Fuzzing Techniques
- Going Beyond the Foothold
- Taking PowerShell to the Next Level
- Escalating Privileges
-
Maintaining Access
- Technical requirements
-
Persistence with Metasploit and PowerShell Empire
- Creating a payload for Metasploit persister
- Configuring the Metasploit persistence module and firing away
- Verifying your persistent Meterpreter backdoor
- Not to be outdone – persistence in PS Empire
- Elevating the security context of our Empire agent
- Creating a WMI subscription for stealthy persistence of your agent
- Verifying agent persistence
- Hack tunnels – netcat backdoors on the fly
- Maintaining access with PowerSploit
- Summary
- Questions
- Further reading
- Tips and Tricks
-
Assessment
- Chapter 1: Bypassing Network Access Control
- Chapter 2: Sniffing and Spoofing
- Chapter 3: Windows Passwords on the Network
- Chapter 4: Advanced Network Attacks
- Chapter 5: Cryptography and the Penetration Tester
- Chapter 6: Advanced Exploitation with Metasploit
- Chapter 7: Stack and Heap Memory Management
- Chapter 8: Windows Kernel Security
- Chapter 9: Weaponizing Python
- Chapter 10: Windows Shellcoding
- Chapter 11: Bypassing Protections with ROP
- Chapter 12: Fuzzing Techniques
- Chapter 13: Going Beyond the Foothold
- Chapter 14: Taking PowerShell to the Next Level
- Chapter 15: Escalating Privileges
- Chapter 16: Maintaining Access
- Other Books You May Enjoy
Product information
- Title: Hands-On Penetration Testing on Windows
- Author(s):
- Release date: July 2018
- Publisher(s): Packt Publishing
- ISBN: 9781788295666
You might also like
book
Windows and Linux Penetration Testing from Scratch - Second Edition
Master the art of identifying and exploiting vulnerabilities with Metasploit, Empire, PowerShell, and Python, turning Kali …
book
Web Penetration Testing with Kali Linux - Third Edition
Build your defense against web attacks with Kali Linux, including command injection flaws, crypto implementation layers, …
book
Kali Linux Penetration Testing Bible
Your ultimate guide to pentesting with Kali Linux Kali is a popular and powerful Linux distribution …
book
Mastering Kali Linux for Advanced Penetration Testing - Third Edition
A practical guide to testing your infrastructure security with Kali Linux, the preferred choice of pentesters …