Coding for Penetration Testers
Building Better Tools
- 2nd Edition - September 21, 2016
- Authors: Jason Andress, Ryan Linn
- Language: English
- Paperback ISBN:9 7 8 - 0 - 1 2 - 8 0 5 4 7 2 - 7
- eBook ISBN:9 7 8 - 0 - 1 2 - 8 0 5 4 7 3 - 4
Coding for Penetration Testers: Building Better Tools, Second Edition provides readers with an understanding of the scripting languages that are commonly used when developin… Read more
Coding for Penetration Testers: Building Better Tools, Second Edition provides readers with an understanding of the scripting languages that are commonly used when developing tools for penetration testing, also guiding users through specific examples of custom tool development and the situations where such tools might be used.
While developing a better understanding of each language, the book presents real-world scenarios and tool development that can be incorporated into a tester's toolkit. This completely updated edition focuses on an expanded discussion on the use of Powershell, and includes practical updates to all tools and coverage.
- Discusses the use of various scripting languages in penetration testing
- Presents step-by-step instructions on how to build customized penetration testing tools using Perl, Ruby, Python, and other languages
- Provides a primer on scripting, including, but not limited to, web scripting, scanner scripting, and exploitation scripting
- Includes all-new coverage of Powershell
Information security professionals and consultants, system administrators and managers focused on information security, as well as hackers and penetration testers
Intro to Command Shell Scripting
Intro to Python
Intro to Perl
Intro to Ruby
Intro to Web Scripting with PHP
Manipulating Windows with Powershell
Scanner Scripting
Information Gathering
Exploitation Scripting
Post-Exploitation Scripting
- Edition: 2
- Published: September 21, 2016
- Language: English
JA
Jason Andress
Jason Andress (CISSP, ISSAP, CISM, GPEN) is a seasoned security professional with a depth of experience in both the academic and business worlds. Presently he carries out information security oversight duties, performing penetration testing, risk assessment, and compliance functions to ensure that critical assets are protected. Jason has taught undergraduate and graduate security courses since 2005 and holds a doctorate in computer science, researching in the area of data protection. He has authored several publications and books, writing on topics including data security, network security, penetration testing, and digital forensics.
Affiliations and expertise
CISSP, ISSAP, CISM, GPENRL
Ryan Linn
Ryan Linn (OSCE, GPEN, GWAPT) is a penetration tester, an author, a developer, and an educator. He comes from a systems administation and Web application development background, with many years of IT security experience. Ryan currently works as a full-time penetration tester and is a regular contributor to open source projects including Metasploit, The Browser Exploitation Framework, and the Dradis Framework. He has spoken at numerous security conferences and events, including ISSA, DEF CON, SecTor, and CarolinaCon.
Affiliations and expertise
OSCE, GPEN, CCNP Security, CISSPRead Coding for Penetration Testers on ScienceDirect