Professional Penetration Testing
and over one million other books are available for Amazon Kindle .
Learn more
| |||||||||||||||
 Trade In this Item for up to £10.75
Get an extra £5 when you trade in books worth £10 or more until June 30, 2012. Trade in Professional Penetration Testing: Creating and Operating a Formal Hacking Lab for an Amazon.co.uk gift card of up to £10.75, which you can then spend on millions of items across the site. Trade-in values may vary (terms apply). Find more products eligible for trade-in.
|
Frequently Bought Together
Product details
|
More About the Author
Product Description
Review
"Wilhelm has created the ultimate handbook for becoming a pen tester. This is going to help launch many a career." - Richard Stiennon, Chief Research Analyst, IT-Harvest "Professional Penetration Testing covers everything from ethical concerns, to advance concepts, to setting up your own custom laboratory. It is the most comprehensive and authoritative guide at penetration testing that I have seen. Tom Wilhelm is a true expert in the field who not only is in the trenches on a daily basis, but also takes the time to instruct others on the ways and means of pen testing." -Frank Thornton, Owner, Blackthorn Systems
Product Description
Table of Contents
PART I - Setting Up
Chapter 1: Introduction
Chapter 2: Ethics and Hacking
Chapter 3: Hacking as a Career
Chapter 4: Setting up your Lab
Chapter 5: Creating and Using PenTest Targets in Your Lab
Chapter 6: Methodologies
Chapter 7: PenTest Metrics
Chapter 8: Management of a PenTest
PART II - Running a PenTest
Chapter 9: Information Gathering
Chapter 10: Vulnerability Identification
Chapter 11: Vulnerability Verification
Chapter 12: Compromising a System and Privilege Escalation
Chapter 13: Maintaining Access
Chapter 14: Covering Your Tracks
PART III - Wrapping Everything Up
Chapter 15: Reporting Results
Chapter 16: Archiving Data
Chapter 17: Cleaning Up Your Lab
Chapter 18: Planning for Your Next PenTest
Appendix A - Acronyms
Appendix B - Definitions
* Unique book and DVD package delivers for the first time the art and science of penetration testing in a retail product.
* Focus on establishing a formal penetration testing laboratory bridges the gap between a talented hacker and a professional who can turn those skills into an actual career.
* Integration of project management workflow in penetration testing gives security managers the knowledge and skillset necessary for running a formal penetration tests and setting up a professional ethical hacking business.
* Details on metrics and reporting provide experience crucial to a professional penetration tester with actual clients, an area in which many amateur hackers have no knowledge or other means for learning.
* DVD includes instructional videos to replicate classroom instruction and live, real-world vulnerability simulations of complete servers with known and unknown vulnerabilities to practice havking skills in a controlled lab environment.
PART I - Setting Up
Chapter 1: Introduction
Chapter 2: Ethics and Hacking
Chapter 3: Hacking as a Career
Chapter 4: Setting up your Lab
Chapter 5: Creating and Using PenTest Targets in Your Lab
Chapter 6: Methodologies
Chapter 7: PenTest Metrics
Chapter 8: Management of a PenTest
PART II - Running a PenTest
Chapter 9: Information Gathering
Chapter 10: Vulnerability Identification
Chapter 11: Vulnerability Verification
Chapter 12: Compromising a System and Privilege Escalation
Chapter 13: Maintaining Access
Chapter 14: Covering Your Tracks
PART III - Wrapping Everything Up
Chapter 15: Reporting Results
Chapter 16: Archiving Data
Chapter 17: Cleaning Up Your Lab
Chapter 18: Planning for Your Next PenTest
Appendix A - Acronyms
Appendix B - Definitions
* Unique book and DVD package delivers for the first time the art and science of penetration testing in a retail product.
* Focus on establishing a formal penetration testing laboratory bridges the gap between a talented hacker and a professional who can turn those skills into an actual career.
* Integration of project management workflow in penetration testing gives security managers the knowledge and skillset necessary for running a formal penetration tests and setting up a professional ethical hacking business.
* Details on metrics and reporting provide experience crucial to a professional penetration tester with actual clients, an area in which many amateur hackers have no knowledge or other means for learning.
* DVD includes instructional videos to replicate classroom instruction and live, real-world vulnerability simulations of complete servers with known and unknown vulnerabilities to practice havking skills in a controlled lab environment.
Inside This Book
(Learn More)
Tags Customers Associate with This Product(What's this?)Click on a tag to find related items, discussions, and people.
|
What Other Items Do Customers Buy After Viewing This Item?
Customer Reviews
Most Helpful Customer Reviews
3 of 3 people found the following review helpful
Format:Paperback
This book will not teach you how to hack, I don't think that was the intention of the author either. What this book does is teach you the lifecycle of Professional Penetration Tests and I feel it does that quite well.
The first part of the book covers ethics, careers, setting up a lab, pen test methodologies, metrics and management. This is a large part of the book and will be useful to anyone looking to get in to penetration testing as a career, there is a lot more to it than rooting boxes...
The second part covers the different phases of a penetration test: information gathering, vulnerability identification and verification, penetration and privilege escalation, maintaining access and covering your tracks.
The third part which is only 70 pages covers: reporting, archiving, cleaning up and planning for the next pen test.
The book is 500 pages which is not a lot of space to cover such a huge subject so what you get here is more of an introduction to professional penetration testing than anything else, the tools on the included DVD are good fun to practice your skills with too.
In short, if you are just getting started or are interested in becoming a penetration tester, this book should provide a lot of insight in to how a penetration test is carried out. It covers a whole lot and will give you a good understanding of the lifecycle from the Penetration Testers perspective.
The first part of the book covers ethics, careers, setting up a lab, pen test methodologies, metrics and management. This is a large part of the book and will be useful to anyone looking to get in to penetration testing as a career, there is a lot more to it than rooting boxes...
The second part covers the different phases of a penetration test: information gathering, vulnerability identification and verification, penetration and privilege escalation, maintaining access and covering your tracks.
The third part which is only 70 pages covers: reporting, archiving, cleaning up and planning for the next pen test.
The book is 500 pages which is not a lot of space to cover such a huge subject so what you get here is more of an introduction to professional penetration testing than anything else, the tools on the included DVD are good fun to practice your skills with too.
In short, if you are just getting started or are interested in becoming a penetration tester, this book should provide a lot of insight in to how a penetration test is carried out. It covers a whole lot and will give you a good understanding of the lifecycle from the Penetration Testers perspective.
4 of 5 people found the following review helpful
Format:Paperback
The included DVD with this book is probably the best bit
The book itself mainly talks about how to managed a Penetration Test, and can get fairly boring after a while
The book itself mainly talks about how to managed a Penetration Test, and can get fairly boring after a while
Format:Paperback
It's been a while since I purchased a copy of this book, and I admit that at first glance it did not make me that happy.
This book is actually like 2 totally different books bundled into one, comprised by the two parts of the book's title:
Part One: Creating and Operating a Formal Hacking Lab
Part Two: Professional Penetration Testing
Why?
Half of the book presents information already known to any Pentest engineer out there and information that suffers from being too specific that risks into becoming obsolete within a very short timeframe (certifications, hackable distros, virtual machine deployment etc).
On the other hand, the second half presents extremely valuable information for individuals already working (or willing to work) professionally on the field; information that will remain applicable for many years to come. Team Formation, Project Management, Methodology, Reporting, Archiving and other challenges daily encountered by pentesting professionals are some of the aspects addressed by this book targeting specifically pentesting as a profession itself. It manages to define the specific profession's details and, if you are already employed as a Penetration Tester, you will see that all of the every-day problems and issues you face are mentioned in this book.
For its second part (which I wish was longer), this is a must-have book for individuals willing to or already work as Professional Penetration Testers as well as for professionals managing PenTesting Teams and PenTesting projects.
This is not a hacking book. This is a book on Penetration Testing as a career/profession.
This book is actually like 2 totally different books bundled into one, comprised by the two parts of the book's title:
Part One: Creating and Operating a Formal Hacking Lab
Part Two: Professional Penetration Testing
Why?
Half of the book presents information already known to any Pentest engineer out there and information that suffers from being too specific that risks into becoming obsolete within a very short timeframe (certifications, hackable distros, virtual machine deployment etc).
On the other hand, the second half presents extremely valuable information for individuals already working (or willing to work) professionally on the field; information that will remain applicable for many years to come. Team Formation, Project Management, Methodology, Reporting, Archiving and other challenges daily encountered by pentesting professionals are some of the aspects addressed by this book targeting specifically pentesting as a profession itself. It manages to define the specific profession's details and, if you are already employed as a Penetration Tester, you will see that all of the every-day problems and issues you face are mentioned in this book.
For its second part (which I wish was longer), this is a must-have book for individuals willing to or already work as Professional Penetration Testers as well as for professionals managing PenTesting Teams and PenTesting projects.
This is not a hacking book. This is a book on Penetration Testing as a career/profession.
Would you like to see more reviews about this item?
Were these reviews helpful?
Let us know
Listmania!
Look for similar items by category
Look for similar items by subject
Feedback
- Would you like to update product info or give feedback on images?
- I am the Author, and I want to comment on my book.
- I am the Publisher, and I want to comment on this book.
|
