PacktLib: Penetration Testing with BackBox

Penetration Testing with BackBox

Credits

About the Author

About the Reviewers

www.PacktPub.com

Preface

Starting Out with BackBox Linux

A flexible penetration testing distribution

The organization of tools in BackBox

Services

Update

Anonymous

Extras

Completeness, accuracy, and support

Links and contacts

Summary

Information Gathering

Starting with an unknown system

Proceeding with a known system

Summary

Vulnerability Assessment and Management

Vulnerability scanning

False positives

Summary

Exploitations

Exploitation of a SQL injection on a database

Exploiting web applications with W3af

Summary

Eavesdropping and Privilege Escalation

Sniffing encrypted SSL/TLS traffic

Password cracking

Summary

Maintaining Access

Backdoor Weevely

Summary

Penetration Testing Methodologies with BackBox

Information gathering

Summary

Documentation and Reporting

MagicTree – the auditing productivity tool

Summary

Index