FREE Delivery in the UK.
In stock.
Dispatched from and sold by Amazon. Gift-wrap available.
Metasploit Penetration Te... has been added to your Basket
+ £2.80 UK delivery
Used: Very Good | Details
Sold by Alfies Sales
Condition: Used: Very Good
Have one to sell?
Flip to back Flip to front
Listen Playing... Paused   You're listening to a sample of the Audible audio edition.
Learn more
See all 2 images

Metasploit Penetration Testing Cookbook Paperback – 22 Jun 2012

Save an extra 10% with Amazon Student*

4.5 out of 5 stars 2 customer reviews

See all formats and editions Hide other formats and editions
Amazon Price
New from Used from
Kindle Edition
"Please retry"
"Please retry"
£24.30 £0.30
Promotion Message Amazon Students Members Get 10% Off 1 Promotion(s)

Note: This item is eligible for click and collect. Details
Pick up your parcel at a time and place that suits you.
  • Choose from over 13,000 locations across the UK
  • Prime members get unlimited deliveries at no additional cost
How to order to an Amazon Pickup Location?
  1. Find your preferred location and add it to your address book
  2. Dispatch to this address when you check out
Learn more

There is a newer edition of this item:

*Save an extra 10% on this product with Amazon Student
From 28 June, 2016, Amazon Student members will receive an extra 10% off 1000s of selected books. The Offer will be automatically applied to your order at checkout. This Offer ends at 23:59pm BST on 16 October, 2016. Terms & Conditions apply. Learn more
£30.99 FREE Delivery in the UK. In stock. Dispatched from and sold by Amazon. Gift-wrap available.
click to open popover

Special Offers and Product Promotions

  • Amazon Students Members Get an Extra 10% Off Selected Books Here's how (terms and conditions apply)

Enter your mobile number or email address below and we'll send you a link to download the free Kindle App. Then you can start reading Kindle books on your smartphone, tablet, or computer - no Kindle device required.

  • Apple
  • Android
  • Windows Phone

To get the free app, enter your mobile phone number.

Product details

  • Paperback: 268 pages
  • Publisher: Packt Publishing (22 Jun. 2012)
  • Language: English
  • ISBN-10: 1849517428
  • ISBN-13: 978-1849517423
  • Product Dimensions: 19 x 1.5 x 23.5 cm
  • Average Customer Review: 4.5 out of 5 stars  See all reviews (2 customer reviews)
  • Amazon Bestsellers Rank: 1,206,284 in Books (See Top 100 in Books)

Product Description

About the Author

Abhinav Singh

Abhinav Singh is a young Information Security specialist from India. He has a keen interest in the field of hacking and network security. He actively works as a freelancer with several security companies and is a consultant. Currently he is employed as Systems Engineer in Tata Consultancy Services, India. He is an active contributor to the SecurityXploded community. He is well recognized for his blog where he shares his encounters with hacking and network security. Abhinav's works have been quoted in several technology magazines and portals.

Customer Reviews

4.5 out of 5 stars
5 star
4 star
3 star
2 star
1 star
See both customer reviews
Share your thoughts with other customers

Top Customer Reviews

Format: Paperback
There are only two Metasploit books on the market worth having, and this is one of them.

I would recommend you buy this book and the Metasploit Pen Testing by Kennedy et al, using them in tandem, if you can afford both.

The Kennedy book is better for beginners and this book, gives more advanced "recipes" to take your skill from beginner to intermediate level.

It covers the Windows 7 infinite loop to crash a machine along with several attacks that you won't find in other books.
It's useful to know how the latest Operating systems can be impacted, even if they are much more secure than XP.

Easy to read.
Great layout.
A couple of daft typo's, but then every technical book has those. :)
Comment One person found this helpful. Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback.
Sorry, we failed to record your vote. Please try again
Report abuse
Format: Paperback
I have worked in IT for the last decade or so and I'd class myself more as an enthusiastic amatuer in the hacking & pen testing field than a pro. As such I'm always looking out for new ways to learn more and be the better white hat.

I've read a lot of the other pen test books out there, most recently Packts "Advanced Penetration Testing for Highly-Secured Environments: The Ultimate Security Guide" and after trying the labs I wanted more. To say I was pleasantly surprised to find Packt had another Pen Test author; Abhinav Singh, up their sleeves was an understatement :)

I'll be honest, I was a little unsure whether the cookbook format would be a good way to learn Pen testing for me, but the book is so well written that I found myself flying through the chapters. I also bought it direct from Packt and so I had it in both kindle and pdf formats which meant I could read it whenever and wherever I wanted.

As per normal it follows the standard pen test book chapter setup of intro, machine setup, recce, exploitation etc. but it covers them in a bit more depth and has a wealth of good screen shots to help guide you through each 'recipe'. I particularly like the fact that both Armitage and SET have chapters of their own and although Armitage has a reputation of Hacking for Dummies, I find it's a very useful tool and Singh covers it well enough without it being an entire book of it's own - now theres an idea..

It's a good book and will find itself staying on my 'book shelf' as a reference, especially as both the code and examples can be downloaded from Packts website for future use and testing.
Comment One person found this helpful. Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback.
Sorry, we failed to record your vote. Please try again
Report abuse

Most Helpful Customer Reviews on (beta) 4.2 out of 5 stars 12 reviews
9 of 9 people found the following review helpful
5.0 out of 5 stars Good metasploit book if you prefer cookbook format 11 Sept. 2012
By Flashforge Creator Pro Owner - Published on
Format: Paperback
Overview: Singh provides an introduction to the widely used Metasploit framework in the form of seventy plus recipes for various penetration testing tasks. In a previous blog, I reviewed Dave Kennedy's Metasploit book. Both texts are well written. The format is different, however. Singh's book is written in a cookbook style which makes it easy to refer to it when attempting specific tasks. Kennedy's book is written in a more traditional style with an introduction and then survey of various aspects of Metasploit.

The differences between these two books extends beyond format. Singh's book goes beyond a basic coverage of Metasploit and covers additional penetration testing tools such as various scanners and evasion tools. So which book should you buy if you had to pick just one? To me it mostly comes down to personal preference. If you are just learning Metasploit, either should be a great aid in this process. If you want a book you can refer back to later, the Singh book may be slightly more convenient.

The publisher may also be a consideration. The Kennedy book is published by No Starch Press, whereas Singh's book is published by Packt. If you like eBooks you may prefer books from Packt Publishing. Packt provides DRM-free books in both PDF and ePub formats. This can be extremely convenient if you like to read your books on multiple devices. Personally I find myself reading books on my tablet and also keeping a copy on my penetration testing platform as a reference.

Here is a brief table of contents for Singh's book:
Chapter 1: Metasploit Quick Tips for Security Professionals covering: configuration, installation, basic use, and storing results in a database
Chapter 2: Information Gathering and Scanning covering: passive and active gathering, social engineering, scanning, Nessus, NeXpose, and Dradis
Chapter 3: Operating System-based Vulnerability Assessment covering: exploits, Windows XP, remote shells, Windows 2003, Windows 7, Linux, and DLL injection
Chapter 4: Client-side Exploitation and Antivirus bypass covering: IE, Word, Adobe Reader, payloads, and killing anti-virus
Chapter 5: Using Meterpreter to Explore the Compromised Target covering: Meterpreter commands, privilege escalation, communication channels, and snooping on Windows targets
Chapter 6: Advanced Meterpreter Scripting covering: hash dumps, back doors, pivoting, Railgun, pivoting, and killing firewalls
Chapter 7: Working with Modules for Penetration Testing covering: Auxiliary modules, admin modules, SQL injection, post-exploitation, and creating new modules
Chapter 8: Working with Exploits covering: mixins, msfvenum, going from exploit to Metasploit module, and fuzzing
Chapter 9: Working with Armitage covering: Getting started, information gathering, and targeting multiple machines
Chapter 10: Social Engineering Toolkit covering: Installation, configuration, spear-phishing, website attacks, and infectious media generation

To summarize, if you are looking for a Metasploit book in cookbook format than this book would be a good choice.

cross-posted from [..]
2 of 2 people found the following review helpful
4.0 out of 5 stars Well made, but nothing new 31 Oct. 2012
By Gergely Revay - Published on
Format: Paperback
To begin with this is a nice book. It covers more or less the whole function set of Metasploit and some other related tools. Sometimes I felt that it is a bit clumsy and sometimes it starts topics but doesn't go deep in it which I felt unnecessary to even start that topic. For instance explaining how to start a scan with Nessus is really not a magic and I felt that it is a waste of paper to write it down. But you can also consider it as a plus you got included in your Metasploit book.

I like the Cookbook style however the first part of the book is written in the Cookbook format but it is actually more like a guide or tutorial then a cookbook because the recepies are very much related to each other, hence it is difficult to read just single recepies. On the other hand the second part of the book really follows the original Cookbook idea.

It is actually written in the book that it is from beginners to experienced people. And that is true. I knew metasploit from a average user's point of view but I don't use it everyday, hence the first part was a bit boring for me but the second where it went quite deep into Ruby scripting gave me some interesting new stuff.

The book is good, however most of it can be found on the Internet sometimes in a well made form for free. But if you like to have a book at home (like me) that you can sometimes open when you have a specific problem to solve with Metasploit then it is a good choice. However I haven't read any other books on this topic so I cannot really compare it to anything.
2 of 2 people found the following review helpful
4.0 out of 5 stars Great Guide 28 July 2012
By bellyboy101 - Published on
Format: Paperback Verified Purchase
precise instructions, step by step guide , easy to follow, easy to read guide book. The author of this book provided alot of examples and easy to follow steps. Real life scenario that a IT professional would probably encounter. If you're an IT professional and you don't have this book then you're missing out on the new and awesome new tools that you can learn to use to protect your network security system.
1 of 1 people found the following review helpful
4.0 out of 5 stars Get Cookin' with Metasploit! 30 Oct. 2012
By Lonnie Kelley - Published on
Format: Paperback
At the very beginning of getting into pentesting most users come across Metasploit as an embedded tool in Back Track. And many times our first experience is this... cd /opt/framework3/msf/ .... Scratching our heads wondering what's next. Well after some Google searches we come up with the answer "ah, yes! I must enter msfconsole or was it ./msfconsole" and this most glorious low-tech ascii picture comes up, sometime a cow, sometimes the word Metasploit, but it's splendor lays in that blinking cursor preceded by " msf >" it's laying there waiting, wanting for a command to do it's master's bidding. Then reality hits you over the head like Hacksaw Jim Duggan with a 2x4 - I don't know what to do! This is where Metasploit Penetration Testing Cookbook by Abhinav Singh comes in handy.

The book does a really good job of providing a beginning foundation with escalating use of difficulty. It was not overly difficult to follow along but I think it's strong point will be in providing reference for different areas in the use of Metasploit.

I really think the book was a stand out in a few areas:

- The quick walk through of what could go wrong during setup and how to potentially fix the issue. The screen shots served as a good reference point of what to expect in that regard. From memory I cannot recall very many technical security books that addressed what could go wrong and the fix(es).

- The use of SSH to help save on memory resources. I think many like to use the Linux UI to get to the Metasploit framework and this is a great alternative to reach Metasploit and really exercise ones command line skillz. (yes, I actually used "z" instead of "s"... Gotta keep street cred Yo!)

- The inclusion of multiple OS's for targeting against. This was great run through as most will only have Windows XP SP2 and a Linux flavor listed. This actually brought the exercises to feel more real. Unfortunately though, it didn't go into more depth on the OS exploitation and felt limited.

- The inclusion of Armitage was a nice surprise, but far to little in comparison to the rest of the Metasploit chapters. The introduction to fast and easy hacking was far to little.

- The introduction to the Social Engineering Toolkit (SET) was nice as well. Again in my opinion, it could've used a little more exposure along with Armitage.

- The "How it works..." sections were nice as well. I know some just want to get it working but there are those of us who want to go deeper into the rabbit hole to understand how and why it works, but alas it seems like there can never be enough information.

Even though the book didn't go as in-depth, the reality is you can't otherwise we'd all be toting 10 lbs. book that could go on for days and days. But I do think that a few of the subjects like Armitage and SET could've been expanded upon a little more as they're are becoming more and more important tools in the security professionals toolkit for finding vulnerabilities and exploiting them. Overall, there are quite a few good books on this subject out there and this is one that should be included on your reference shelf.
1 of 1 people found the following review helpful
5.0 out of 5 stars A Must 28 April 2013
By Daniel Gligorov - Published on
Format: Paperback
This is a must book for anybody out there in security filed! You can be beginner in security to understand it, its written so simple, but you have to be advanced in Systems and Networking to understand what you are doing. No need of programing experience at all, except for a single chapter, but if you are not interested in developing exploits but just using available ones you can skip that chapter. I cant say if its better or not with Metasploit: The Penetration Tester's Guide, they are very similar, but I can say these two books are only two book you need to read to understand Metasploit Framework.
Were these reviews helpful? Let us know