Coding for Penetration Testers: Building Better Tools by Jason AndressCoding for Penetration Testers: Building Better Tools by Jason Andress

Coding for Penetration Testers: Building Better Tools

byJason Andress, Ryan LinnEditorJason Andress

Paperback | September 23, 2011

Pricing and Purchase Info

$35.55 online 
$55.95 list price
Earn 178 plum® points

Prices and offers may vary in store

Out of stock online

Not available in stores

about

Coding for Penetration Testersdiscusses the use of various scripting languages in penetration testing. The book presents step-by-step instructions on how to build customized penetration testing tools using Perl, Ruby, Python, and other languages. It also provides a primer on scripting including, but not limited to, Web scripting, scanner scripting, and exploitation scripting. It guides the student through specific examples of custom tool development that can be incorporated into a tester's toolkit as well as real-world scenarios where such tools might be used. This book is divided into 10 chapters that explores topics such as command shell scripting; Python, Perl, and Ruby; Web scripting with PHP; manipulating Windows with PowerShell; scanner scripting; information gathering; exploitation scripting; and post-exploitation scripting. This book will appeal to penetration testers, information security practitioners, and network and system administrators.



  • Discusses the use of various scripting languages in penetration testing
  • Presents step-by-step instructions on how to build customized penetration testing tools using Perl, Ruby, Python, and other languages
  • Provides a primer on scripting including, but not limited to, Web scripting, scanner scripting, and exploitation scripting
Jason Andress (CISSP, ISSAP, CISM, GPEN) is a seasoned security professional with a depth of experience in both the academic and business worlds. Presently he carries out information security oversight duties, performing penetration testing, risk assessment, and compliance functions to ensure that critical assets are protected. Jason h...
Loading
Title:Coding for Penetration Testers: Building Better ToolsFormat:PaperbackDimensions:320 pages, 9.25 × 7.5 × 0.68 inPublished:September 23, 2011Publisher:Syngress PublishingLanguage:English

The following ISBNs are associated with this title:

ISBN - 10:1597497290

ISBN - 13:9781597497299

Table of Contents

Foreword by Ed Skoudis

Chapter 0:Introduction

Chapter 1:Introduction to Command Shell Scripting

Chapter 2:Introduction to Python

Chapter 3:Introduction to Perl

Chapter 4:Introduction to Ruby

Chapter 5:Introduction to Web Scripting with PHP

Chapter 6:Manipulating Windows with PowerShell

Chapter 7:Scanner Scripting

Chapter 8:Information Gathering

Chapter 9:Exploitation Scripting

Chapter 10:Post-Exploitation Scripting

Appendix:Subnetting and CIDR Addresses

Editorial Reviews

"Penetration testing is a profession that requires the mastery of dozens of tools; every job poses challenges that require these tools to be mixed, matched, and automated. The master penetration tester not only excels at using his or her toolbox, but also expands it with custom scripts and unique programs to solve the challenge of the day. This book provides a solid introduction to custom scripting and tool development, using multiple languages, with a penetration tester's goals in mind. This background can transform penetration testing from a manual, often repetitive task, to an efficient process that is not just faster, but also more accurate and consistent across large engagements."--HD Moore, Metasploit Founder and CSO of Rapid7 "Penetration testing requires that the tester understand the target as much as possible, and know how to perform various attacks while being as efficient as possible. Having the skill set to create and use a variety of scripts increases the penetration tester's efficiency and elevates him or her from the script kiddie to the professional realm. Ryan Linn and Jason Andress have created a guide that explores and introduces the techniques that are necessary to build the scripts used during a test. No matter the platform, this book provides the information required to learn scripting and become a world-class penetration tester. This is definitely a book that will remain close at hand for every test I perform!"--Kevin Johnson, Senior Consultant, Secure Ideas