The Basics of Hacking and Penetration Testing
- 3rd Edition - May 1, 2026
- Latest edition
- Authors: Thomas Wilhelm, Patrick Engebretson
- Language: English
The Basics of Hacking and Penetration Testing, Third Edition serves as an introduction to the steps required to complete a penetration test or perform an ethical hack from beginn… Read more
Purchase options
The Basics of Hacking and Penetration Testing, Third Edition serves as an introduction to the steps required to complete a penetration test or perform an ethical hack from beginning to end. The book teaches readers how to properly utilize and interpret the results of the modern-day hacking tools required to complete a penetration test. It provides a simple and clear explanation of how to effectively utilize these tools, along with a four-step methodology for conducting a penetration test or hack, thus equipping readers with the know-how required to jump start their careers and gain a better understanding of offensive security.
Each chapter contains hands-on examples and exercises that are designed to teach learners how to interpret results and utilize those results in later phases. This new edition includes six all-new chapters, and has been completely updated to the most current industry-standard tools, testing methodologies, and exploitable targets. New chapters on setting up a Pen Testing Lab and Hacking Careers have been added to expand and update the book. This is complemented by videos for in class use.
Each chapter contains hands-on examples and exercises that are designed to teach learners how to interpret results and utilize those results in later phases. This new edition includes six all-new chapters, and has been completely updated to the most current industry-standard tools, testing methodologies, and exploitable targets. New chapters on setting up a Pen Testing Lab and Hacking Careers have been added to expand and update the book. This is complemented by videos for in class use.
- Presents hands-on labs that reinforce concepts and build applied skills used in later test phases
- Written by authors who work in the field as Penetration Testers and who teach Offensive Security, Penetration Testing, Ethical Hacking, and Exploitation classes
- Focuses on the seminal industry-standard tools required to complete a penetration test
Security managers, computer science analysts, security consultants, and researchers in academia and industry, as well as beginning InfoSec professionals and Students
Acknowledgements
About the Authors
1. What is Penetration Testing?
2. Setting up a lab
3. Types of Pentesting
4. OWASP Top 10
5. Planning
6. Discovery
7. Attack
8. Reporting
9. Hacking Career
About the Authors
1. What is Penetration Testing?
2. Setting up a lab
3. Types of Pentesting
4. OWASP Top 10
5. Planning
6. Discovery
7. Attack
8. Reporting
9. Hacking Career
- Edition: 3
- Latest edition
- Published: May 1, 2026
- Language: English
TW
Thomas Wilhelm
Thomas Wilhelm has been involved in Information Security since 1990, where he served in the U.S. Army for 8 years as a Signals Intelligence Analyst, Russian Linguist, and a Cryptanalyst. His expertise in the field of Information Security has led him to speak at prominent security conferences across the United States, including DefCon, HOPE, and CSI.
Thomas has contributed significantly to the field of professional penetration testing and information security. In his capacity as both a practice director and a managing director, he has played a pivotal role in executing offensive and defensive security initiatives for Fortune 100 companies and leading research and tool development that has influenced the security industry. Presently, he serves as a managing director at Redstone Securities and possesses master’s degrees in both Computer Science and Management.
His influence also extends to education where he formerly held the position of Associate Professor at Colorado Technical University. Thomas has also written various publications, including magazines and books. Through Pentest.TV, he continues to provide advanced security training and has obtained numerous certifications over the years, including the ISSMP, CISSP, CCNP Security, AWS Cloud Solutions Architect, AWS Cloud Security Specialist, and multiple Solaris certifications as well.
Affiliations and expertise
Managing Director, Redstone Securities, Colorado Springs, CO, USAPE
Patrick Engebretson
Dr. Patrick Engebretson obtained his Doctor of Science degree with a specialization in Information Security from Dakota State University. He served as Dean of The Beacom College from 2020-2023. Prior to serving as dean, he was Chief Information Officer for East River Electric. Before joining East River, Dr. Engebretson worked for the Department of Defense, where he focused on cyber security projects. He also served as a tenured Associate Professor of Computer and Network Security, teaching undergraduate and graduate courses in information security including penetration testing, intrusion detection, exploitation, and malware. Dr. Engebretson has been invited by the Department of Homeland Security to share his research at the Software Assurance Forum in Washington, DC and has also spoken at Black Hat in Las Vegas. His research interests include penetration testing, hacking, intrusion detection, exploitation, honey pots, and malware.
Affiliations and expertise
Dakota State University, Madison, SD, USA