Once we get an access to the system, we will see what we can do after we gain access to this computer, regardless of the method used to gained access to it. This could involve a server-side exploit, a client-side exploit, or even just physical access, where the victim leaves their desk and you get in. We're going look at what we can do once we have access to the target, how we can further exploit that target and increase our privileges, or target other computers in the same place.
- Title Page
- Copyright and Credits
- Dedication
- Packt Upsell
- Contributors
- Preface
- Introduction
- Setting Up a Lab
- Linux Basics
- Network Penetration Testing
- Pre-Connection Attacks
- Network Penetration Testing - Gaining Access
- Post-Connection Attacks
- Man-in-the-Middle Attacks
- Network Penetration Testing, Detection, and Security
- Gaining Access to Computer Devices
- Scanning Vulnerabilities Using Tools
- Client-Side Attacks
- Client-Side Attacks - Social Engineering
- Client-side attacks using social engineering 
- Maltego overview
- Social engineering – linking accounts
- Social engineering – Twitter
- Social engineering – emails
- Social engineering – summary
- Downloading and executing AutoIt 
- Changing the icon and compiling the payload
- Changing extensions
- Client-side attacks – TDM email spoofing
- Summary
- Attack and Detect Trojans with BeEF
- Attacks Outside the Local Network
- Post Exploitation
- Website Penetration Testing
- Website Pentesting - Information Gathering
- File Upload, Code Execution, and File Inclusion Vulnerabilities
- SQL Injection Vulnerabilities
- Cross-Site Scripting Vulnerabilities
- Discovering Vulnerabilities Automatically Using OWASP ZAP
- Other Books You May Enjoy
Post-exploitation
-
No Comment
..................Content has been hidden....................
You can't read the all page of ebook, please click here login for view all page.