Shop now Learn more Shop now Shop Clothing clo_fly_aw15_NA_shoes Shop All Shop All Amazon Fashion Cloud Drive Photos Shop now Learn More Shop now Shop Fire HD 6 Shop Kindle Paperwhite Shop now Shop Now Shop now
Metasploit Penetration Testing Cookbook and over 2 million other books are available for Amazon Kindle . Learn more
FREE Delivery in the UK.
In stock.
Dispatched from and sold by Amazon.
Gift-wrap available.
Quantity:1
Metasploit Penetration Te... has been added to your Basket
+ £2.80 UK delivery
Used: Very Good | Details
Sold by momox co uk
Condition: Used: Very Good
Comment: Please allow 1-2 weeks for delivery. For DVDs please check region code before ordering.
Have one to sell?
Flip to back Flip to front
Listen Playing... Paused   You're listening to a sample of the Audible audio edition.
Learn more
See all 2 images

Metasploit Penetration Testing Cookbook Paperback – 22 Jun 2012

2 customer reviews

See all formats and editions Hide other formats and editions
Amazon Price New from Used from
Kindle Edition
"Please retry"
Paperback
"Please retry"
£30.99
£22.64 £20.39

There is a newer edition of this item:

£30.99 FREE Delivery in the UK. In stock. Dispatched from and sold by Amazon. Gift-wrap available.

Special Offers and Product Promotions

  • Save £20 on Amazon.co.uk with the aqua Classic card. Get an initial credit line of £250-£1,200 and build your credit rating. Representative 32.9% APR (variable). Subject to term and conditions. Learn more.

Frequently Bought Together

  • Metasploit Penetration Testing Cookbook
  • +
  • Metasploit: The Penetration Tester's Guide
Total price: £57.79
Buy the selected items together



Product details

  • Paperback: 268 pages
  • Publisher: Packt Publishing (22 Jun. 2012)
  • Language: English
  • ISBN-10: 1849517428
  • ISBN-13: 978-1849517423
  • Product Dimensions: 19 x 1.5 x 23.5 cm
  • Average Customer Review: 4.5 out of 5 stars  See all reviews (2 customer reviews)
  • Amazon Bestsellers Rank: 1,041,147 in Books (See Top 100 in Books)

Product Description

About the Author

Abhinav Singh

Abhinav Singh is a young Information Security specialist from India. He has a keen interest in the field of hacking and network security. He actively works as a freelancer with several security companies and is a consultant. Currently he is employed as Systems Engineer in Tata Consultancy Services, India. He is an active contributor to the SecurityXploded community. He is well recognized for his blog http://hackingalert.blogspot.com where he shares his encounters with hacking and network security. Abhinav's works have been quoted in several technology magazines and portals.


Inside This Book

(Learn More)
Browse Sample Pages
Front Cover | Copyright | Table of Contents | Excerpt | Back Cover
Search inside this book:

What Other Items Do Customers Buy After Viewing This Item?

Customer Reviews

4.5 out of 5 stars
5 star
1
4 star
1
3 star
0
2 star
0
1 star
0
See both customer reviews
Share your thoughts with other customers

Most Helpful Customer Reviews

1 of 1 people found the following review helpful By Yay!! TOP 500 REVIEWER on 30 May 2013
Format: Paperback
There are only two Metasploit books on the market worth having, and this is one of them.

I would recommend you buy this book and the Metasploit Pen Testing by Kennedy et al, using them in tandem, if you can afford both.

The Kennedy book is better for beginners and this book, gives more advanced "recipes" to take your skill from beginner to intermediate level.

It covers the Windows 7 infinite loop to crash a machine along with several attacks that you won't find in other books.
It's useful to know how the latest Operating systems can be impacted, even if they are much more secure than XP.

Easy to read.
Great layout.
A couple of daft typo's, but then every technical book has those. :)
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
1 of 2 people found the following review helpful By Amazon Customer on 31 Oct. 2012
Format: Paperback
I have worked in IT for the last decade or so and I'd class myself more as an enthusiastic amatuer in the hacking & pen testing field than a pro. As such I'm always looking out for new ways to learn more and be the better white hat.

I've read a lot of the other pen test books out there, most recently Packts "Advanced Penetration Testing for Highly-Secured Environments: The Ultimate Security Guide" and after trying the labs I wanted more. To say I was pleasantly surprised to find Packt had another Pen Test author; Abhinav Singh, up their sleeves was an understatement :)

I'll be honest, I was a little unsure whether the cookbook format would be a good way to learn Pen testing for me, but the book is so well written that I found myself flying through the chapters. I also bought it direct from Packt and so I had it in both kindle and pdf formats which meant I could read it whenever and wherever I wanted.

As per normal it follows the standard pen test book chapter setup of intro, machine setup, recce, exploitation etc. but it covers them in a bit more depth and has a wealth of good screen shots to help guide you through each 'recipe'. I particularly like the fact that both Armitage and SET have chapters of their own and although Armitage has a reputation of Hacking for Dummies, I find it's a very useful tool and Singh covers it well enough without it being an entire book of it's own - now theres an idea..

It's a good book and will find itself staying on my 'book shelf' as a reference, especially as both the code and examples can be downloaded from Packts website for future use and testing.
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again

Most Helpful Customer Reviews on Amazon.com (beta)

Amazon.com: 12 reviews
9 of 9 people found the following review helpful
Good metasploit book if you prefer cookbook format 11 Sept. 2012
By Philip A. Polstra - Published on Amazon.com
Format: Paperback
Overview: Singh provides an introduction to the widely used Metasploit framework in the form of seventy plus recipes for various penetration testing tasks. In a previous blog, I reviewed Dave Kennedy's Metasploit book. Both texts are well written. The format is different, however. Singh's book is written in a cookbook style which makes it easy to refer to it when attempting specific tasks. Kennedy's book is written in a more traditional style with an introduction and then survey of various aspects of Metasploit.

The differences between these two books extends beyond format. Singh's book goes beyond a basic coverage of Metasploit and covers additional penetration testing tools such as various scanners and evasion tools. So which book should you buy if you had to pick just one? To me it mostly comes down to personal preference. If you are just learning Metasploit, either should be a great aid in this process. If you want a book you can refer back to later, the Singh book may be slightly more convenient.

The publisher may also be a consideration. The Kennedy book is published by No Starch Press, whereas Singh's book is published by Packt. If you like eBooks you may prefer books from Packt Publishing. Packt provides DRM-free books in both PDF and ePub formats. This can be extremely convenient if you like to read your books on multiple devices. Personally I find myself reading books on my tablet and also keeping a copy on my penetration testing platform as a reference.

Here is a brief table of contents for Singh's book:
Chapter 1: Metasploit Quick Tips for Security Professionals covering: configuration, installation, basic use, and storing results in a database
Chapter 2: Information Gathering and Scanning covering: passive and active gathering, social engineering, scanning, Nessus, NeXpose, and Dradis
Chapter 3: Operating System-based Vulnerability Assessment covering: exploits, Windows XP, remote shells, Windows 2003, Windows 7, Linux, and DLL injection
Chapter 4: Client-side Exploitation and Antivirus bypass covering: IE, Word, Adobe Reader, payloads, and killing anti-virus
Chapter 5: Using Meterpreter to Explore the Compromised Target covering: Meterpreter commands, privilege escalation, communication channels, and snooping on Windows targets
Chapter 6: Advanced Meterpreter Scripting covering: hash dumps, back doors, pivoting, Railgun, pivoting, and killing firewalls
Chapter 7: Working with Modules for Penetration Testing covering: Auxiliary modules, admin modules, SQL injection, post-exploitation, and creating new modules
Chapter 8: Working with Exploits covering: mixins, msfvenum, going from exploit to Metasploit module, and fuzzing
Chapter 9: Working with Armitage covering: Getting started, information gathering, and targeting multiple machines
Chapter 10: Social Engineering Toolkit covering: Installation, configuration, spear-phishing, website attacks, and infectious media generation

To summarize, if you are looking for a Metasploit book in cookbook format than this book would be a good choice.

cross-posted from [..]
2 of 2 people found the following review helpful
Well made, but nothing new 31 Oct. 2012
By Gergely Revay - Published on Amazon.com
Format: Paperback
To begin with this is a nice book. It covers more or less the whole function set of Metasploit and some other related tools. Sometimes I felt that it is a bit clumsy and sometimes it starts topics but doesn't go deep in it which I felt unnecessary to even start that topic. For instance explaining how to start a scan with Nessus is really not a magic and I felt that it is a waste of paper to write it down. But you can also consider it as a plus you got included in your Metasploit book.

FORMAT:
I like the Cookbook style however the first part of the book is written in the Cookbook format but it is actually more like a guide or tutorial then a cookbook because the recepies are very much related to each other, hence it is difficult to read just single recepies. On the other hand the second part of the book really follows the original Cookbook idea.

TARGET AUDIANCE:
It is actually written in the book that it is from beginners to experienced people. And that is true. I knew metasploit from a average user's point of view but I don't use it everyday, hence the first part was a bit boring for me but the second where it went quite deep into Ruby scripting gave me some interesting new stuff.

SUMMARY:
The book is good, however most of it can be found on the Internet sometimes in a well made form for free. But if you like to have a book at home (like me) that you can sometimes open when you have a specific problem to solve with Metasploit then it is a good choice. However I haven't read any other books on this topic so I cannot really compare it to anything.
2 of 2 people found the following review helpful
Great Guide 28 July 2012
By bellyboy101 - Published on Amazon.com
Format: Paperback Verified Purchase
precise instructions, step by step guide , easy to follow, easy to read guide book. The author of this book provided alot of examples and easy to follow steps. Real life scenario that a IT professional would probably encounter. If you're an IT professional and you don't have this book then you're missing out on the new and awesome new tools that you can learn to use to protect your network security system.
1 of 1 people found the following review helpful
Get Cookin' with Metasploit! 30 Oct. 2012
By Lonnie Kelley - Published on Amazon.com
Format: Paperback
At the very beginning of getting into pentesting most users come across Metasploit as an embedded tool in Back Track. And many times our first experience is this... cd /opt/framework3/msf/ .... Scratching our heads wondering what's next. Well after some Google searches we come up with the answer "ah, yes! I must enter msfconsole or was it ./msfconsole" and this most glorious low-tech ascii picture comes up, sometime a cow, sometimes the word Metasploit, but it's splendor lays in that blinking cursor preceded by " msf >" it's laying there waiting, wanting for a command to do it's master's bidding. Then reality hits you over the head like Hacksaw Jim Duggan with a 2x4 - I don't know what to do! This is where Metasploit Penetration Testing Cookbook by Abhinav Singh comes in handy.

The book does a really good job of providing a beginning foundation with escalating use of difficulty. It was not overly difficult to follow along but I think it's strong point will be in providing reference for different areas in the use of Metasploit.

I really think the book was a stand out in a few areas:

- The quick walk through of what could go wrong during setup and how to potentially fix the issue. The screen shots served as a good reference point of what to expect in that regard. From memory I cannot recall very many technical security books that addressed what could go wrong and the fix(es).

- The use of SSH to help save on memory resources. I think many like to use the Linux UI to get to the Metasploit framework and this is a great alternative to reach Metasploit and really exercise ones command line skillz. (yes, I actually used "z" instead of "s"... Gotta keep street cred Yo!)

- The inclusion of multiple OS's for targeting against. This was great run through as most will only have Windows XP SP2 and a Linux flavor listed. This actually brought the exercises to feel more real. Unfortunately though, it didn't go into more depth on the OS exploitation and felt limited.

- The inclusion of Armitage was a nice surprise, but far to little in comparison to the rest of the Metasploit chapters. The introduction to fast and easy hacking was far to little.

- The introduction to the Social Engineering Toolkit (SET) was nice as well. Again in my opinion, it could've used a little more exposure along with Armitage.

- The "How it works..." sections were nice as well. I know some just want to get it working but there are those of us who want to go deeper into the rabbit hole to understand how and why it works, but alas it seems like there can never be enough information.

Even though the book didn't go as in-depth, the reality is you can't otherwise we'd all be toting 10 lbs. book that could go on for days and days. But I do think that a few of the subjects like Armitage and SET could've been expanded upon a little more as they're are becoming more and more important tools in the security professionals toolkit for finding vulnerabilities and exploiting them. Overall, there are quite a few good books on this subject out there and this is one that should be included on your reference shelf.
1 of 1 people found the following review helpful
A Must 28 April 2013
By Daniel Gligorov - Published on Amazon.com
Format: Paperback
This is a must book for anybody out there in security filed! You can be beginner in security to understand it, its written so simple, but you have to be advanced in Systems and Networking to understand what you are doing. No need of programing experience at all, except for a single chapter, but if you are not interested in developing exploits but just using available ones you can skip that chapter. I cant say if its better or not with Metasploit: The Penetration Tester's Guide, they are very similar, but I can say these two books are only two book you need to read to understand Metasploit Framework.
Were these reviews helpful? Let us know


Feedback