The new and improved guide to penetration testing using the legendary Metasploit Framework. Metasploit: The Penetration Tester's Guide has been the definitive security assessment resource for over a decade. The Metasploit Framework makes discovering, exploiting, and sharing vulnerabilities quick and relatively painless, but using it can be challenging for newcomers. Written by renowned ethical hackers and industry experts, this fully updated second edition includes:
- Advanced Active Directory and cloud penetration testing
- Modern evasion techniques and payload encoding
- Malicious document generation for client-side exploitation
- Coverage of recently added modules and commands
- Conduct network reconnaissance and analyze vulnerabilities
- Execute wireless network and social engineering attacks
- Perform post-exploitation techniques, including privilege escalation
- Develop custom modules in Ruby and port existing exploits
- Use MSFvenom to evade detection
- Integrate with Nmap, Nessus, and the Social-Engineer Toolkit
Autorentext
Dave Kennedy, founder of Binary Defense and TrustedSec, is a cybersecurity leader who advised on the Emmy-winning series Mr. Robot. Mati Aharoni, OffSec founder, is a veteran penetration tester who has uncovered major security flaws. Devon Kearns co-founded the Exploit Database and Kali Linux. Jim O'Gorman heads the Kali Linux project at OffSec. Daniel G. Graham is a professor of computer science at the University of Virginia and a former program manager at Microsoft.