Quantity:

More Buying Choices

37 used & new from �19.93

Have one to sell? Sell yours here

Share your own customer images

Search inside this book

Penetration Tester's Open Source Toolkit: 2 (Paperback)

by Chris Hurley (Author)

2.0 out of 5 stars See all reviews (2 customer reviews)

RRP:	�40.99
Price:	�29.99 & this item Delivered FREE in the UK with Super Saver Delivery. See details and conditions
You Save:	�11.00 (27%)
	o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o

In stock.
Dispatched from and sold by Amazon.co.uk. Gift-wrap available.

Want guaranteed delivery by Tuesday, November 17? Choose Express delivery at checkout. See Details

30 new from �19.93 7 used from �19.95

Frequently Bought Together

Price For All Three: �77.14

Show availability and delivery details

This item: Penetration Tester's Open Source Toolkit: 2 by Chris Hurley
In stock.
Dispatched from and sold by Amazon.co.uk.
This item Delivered FREE in the UK with Super Saver Delivery. See details and conditions
Metasploit Toolkit for Penetration Testing, Exploit Development, and Vulnerability Research by David Maynor
In stock.
Dispatched from and sold by Amazon.co.uk.
This item Delivered FREE in the UK with Super Saver Delivery. See details and conditions
Nmap Network Scanning: The Official Nmap Project Guide to Network Discovery and Security Scanning by Gordon Lyon
In stock.
Dispatched from and sold by Amazon.co.uk.
This item Delivered FREE in the UK with Super Saver Delivery. See details and conditions

Customers Who Bought This Item Also Bought

Metasploit Toolkit for Penetration Testing, Exploit Development, and Vulnerability Research

by David Maynor

4.0 out of 5 stars (1) �24.14

Nmap Network Scanning: The Official Nmap Project Guide to Network Discovery and Security Scanning

by Gordon Lyon

5.0 out of 5 stars (5) �23.01

Google Hacking for Penetration Testers,2: vol. 2

by Johnny Long

5.0 out of 5 stars (1) �21.18

Gray Hat Hacking, Second Edition: The Ethical Hacker's Handbook

by Shon Harris

5.0 out of 5 stars (3) �20.14

Penetration Tester's Open Source Toolkit

by Jay Beale

4.0 out of 5 stars (3)

› Explore similar items

Product details

Paperback: 592 pages
Publisher: Syngress; 1 edition (22 Nov 2007)
Language English
ISBN-10: 1597492132
ISBN-13: 978-1597492133
Product Dimensions: 22.9 x 19 x 4.1 cm

Average Customer Review: 2.0 out of 5 stars See all reviews (2 customer reviews)

Amazon.co.uk Sales Rank: 371,646 in Books (See Bestsellers in Books)
Popular in this category:
#71 in Books > Computing & Internet > Databases > Applications > Access

Would you like to update product info or give feedback on images?

See Complete Table of Contents

Customers Viewing This Page May Be Interested in These Sponsored Links

(What is this?)

Multimeters And Clamps opens new browser window

www.pat-services.co.uk - Fluke, Megger, And Seaward Testers In Stock With Next Day Delivery

Product Description

Penetration testing a network requires a delicate balance of art and science. A penetration tester must be creative enough to think outside of the box to determine the best attack vector into his own network, and also be expert in using the literally hundreds of tools required to execute the plan. This second volume adds over 300 new pentesting applications included with BackTrack 2 to the pen tester's toolkit. It includes the latest information on Snort, Nessus, Wireshark, Metasploit, Kismet and all of the other major Open Source platforms.

. Perform Network Reconnaissance
Master the objectives, methodology, and tools of the least understood aspect of a penetration test.
. Demystify Enumeration and Scanning
Identify the purpose and type of the target systems, obtain specific information about the versions of the services that are running on the systems, and list the targets and services.
. Hack Database Services
Understand and identify common database service vulnerabilities, discover database services, attack database authentication mechanisms, analyze the contents of the database, and use the database to obtain access to the host operating system.
. Test Web Servers and Applications
Compromise the Web server due to vulnerabilities on the server daemon itself, its unhardened state, or vulnerabilities within the Web applications.
. Test Wireless Networks and Devices
Understand WLAN vulnerabilities, attack WLAN encryption, master information gathering tools, and deploy exploitation tools.
. Examine Vulnerabilities on Network Routers and Switches
Use Traceroute, Nmap, ike-scan, Cisco Torch, Finger, Nessus, onesixtyone, Hydra, Ettercap, and more to attack your network devices.
. Customize BackTrack 2
Torque BackTrack 2 for your specialized needs through module management, unique hard drive installations, and USB installations.
. Perform Forensic Discovery and Analysis with BackTrack 2
Use BackTrack in the field for forensic analysis, image acquisition, and file carving.
. Build Your Own PenTesting Lab
Everything you need to build your own fully functional attack lab.

About the Author

Chris Hurley is a Senior Penetration Tester in the Washington, DC area. He has more than 10 years of experience performing penetration testing, vulnerability assessments, and general INFOSEC grunt work. He is the founder of the WorldWide WarDrive, a four-year project to assess the security posture of wireless networks deployed throughout the world. Chris was also the original organizer of the DEF CON WarDriving contest. He is the lead author of WarDriving: Drive, Detect, Defend (Syngress Publishing, ISBN: 19318360305). He has contributed to several other Syngress publications, including Penetration Tester's Open Source Toolkit (ISBN: 1-5974490210), Stealing the Network: How to Own an Identity (ISBN: 1597490067), InfoSec Career Hacking (ISBN: 1597490113), and OS X for Hackers at Heart (ISBN: 1597490407). He has a BS from Angelo State University in Computer Science and a whole bunch of certifications to make himself feel important.

Inside This Book (Learn More)

Browse Sample Pages
Front Cover | Copyright | Table of Contents | Excerpt | Index

Tags Customers Associate with This Product

(What's this?)

Click on a tag to find related items, discussions, and people.

security penetration test open source ba...(1)

What Do Customers Ultimately Buy After Viewing This Item?

	41% buy the item featured on this page: Penetration Tester's Open Source Toolkit: 2 2.0 out of 5 stars (2) �29.99
	18% buy Nmap Network Scanning: The Official Nmap Project Guide to Network Discovery and Security Scanning 5.0 out of 5 stars (5) �23.01
	16% buy Metasploit Toolkit for Penetration Testing, Exploit Development, and Vulnerability Research 4.0 out of 5 stars (1) �24.14
	13% buy Google Hacking for Penetration Testers,2: vol. 2 5.0 out of 5 stars (1) �21.18

Explore similar items

Customer Reviews

2 Reviews

5 star:		(0)
4 star:		(0)
3 star:		(0)
2 star:		(2)
1 star:		(0)

Average Customer Review

2.0 out of 5 stars (2 customer reviews)

Share your thoughts with other customers:

Create your own review

Most Helpful Customer Reviews

2.0 out of 5 stars Take the "Open Source" with a pinch of salt, 30 Aug 2009

By	Mr. Callum F. Wilson (Stirling, Scotland) - See all my reviews (REAL NAME)

It's slightly ironic that this book has "open source toolkit" in its title when quite a few of the footprinting tools that are mentioned in the book are scripts and tools from Sensepost - which crucially, appear not to be on an open source licence. The book mentions some of the pay-for tools that sensepost supply, e.g. BidiBlah (which isn't "free" nor open source)

from sensepost's website:
"The evaluation of BiDiBLAH is limited to a 60 minute run time, and saving of data has been disabled. The full version is licensed for 1 year, and costs $500"

Apart from that, The book isn't that bad and has some good suggestions of how to proceed through the stages of a pen test and there are good work through examples with regard web applications. The wireless section is a bit lightweight for me but is a good overview. Forensics information relies heavily on the use of the accompanying Backtrack 2 CD, but none-the-less is OK, but is weak on the procedural/bureaucratic side of forensic investigation.

Useful book to have on a shelf to help you prepare a pre-engagement plan if you find yourself in unfamiliar territory during a pen test - but is let down by the quasi or non open source tools referenced in the book.

Comment Comment | Permalink | Was this review helpful to you? Yes No (Report this)

2.0 out of 5 stars Poor, 15 Jul 2009

By	Cryptoman - See all my reviews

This book tends to describe what to do, without really explaining why it works. As such it does not educate the reader.

It is rather annoying just how many times they manage to mention SensePost, which according to the biography just happens to employ a number of the authors.

One to avoid. Just download the open source software yourself and read the man pages - just as good and will save you money.

Comment Comment | Permalink | Was this review helpful to you? Yes No (Report this)

Share your thoughts with other customers: Create your own review

› See all 2 customer reviews...

.jsOffDisplayBlock { display: block; } .jsOffDisplayInline { display: inline; } .jsOffVisibility { visibility: visible; } .jsOnDisplayBlock { display: none; } .jsOnDisplayNoneBlock { display: block; } .jsOnDisplayNoneInline { display: inline; } .jsOnDisplayInline { display: none; } .jsOnVisibility { visibility: hidden; } .jqOnDisplayBlock { display: none; } .jqOnDisplayInline { display: none; } .jqOnVisibility { visibility: hidden; } .jqOnDisplayNoneBlock { display: block; } .jqOnDisplayNoneInline { display: inline; }