Average customer rating: 4.0
  • good introduction
  • Solid Penetration Testing Book
  • Excellent reference.
  • Good review of currently available software
  • Excellent kickstart

Similar Items:
  1. Nessus Network Auditing (Jay Beale's Open Source Security) (Jay Beale's Open Source Security)
  2. Google Hacking for Penetration Testers
  3. Nessus, Snort, & Ethereal Power Tools: Customizing Open Source Security Applications (Jay Beale's Open Source Security) (Jay Beale's Open Source Security)
  4. Gray Hat Hacking : The Ethical Hacker's Handbook
  5. Penetration Testing and Network Defense (Networking Technology)

Listmania:
  1. Sweet Computer Science Books
  2. Computer Investigator Essentials
  3. Information Security Professionals Reference Library
  4. Network Hacking Books
 Penetration Tester's Open Source Toolkit
Charl Van Der Walt , HD Moore , Roelof Temmingh , Haroon Meer , Johnny Long , Chris Hurley , and James Foster
Manufacturer: Syngress
Product Group: Book
Binding: Paperback
ASIN: 1597490210
2005-06-01

Related Categories:

Privacy Privacy
Related | Business & Culture | Computers & Internet | Subjects | Books
Security Security
Related | Project Management | Business & Culture | Computers & Internet | Subjects | Books
Intranets Intranets
Related | Internet, Groupware, & Telecommunications | Networking | Computers & Internet | Subjects | Books
LAN LAN
Related | Networks, Protocols & APIs | Networking | Computers & Internet | Subjects | Books
Network Security Network Security
Related | Networks, Protocols & APIs | Networking | Computers & Internet | Subjects | Books
General General
Related | Networks, Protocols & APIs | Networking | Computers & Internet | Subjects | Books
Linux Linux
Related | Subjects | Certification Central | Computers & Internet | Subjects | Books
General General
Related | Computers & Internet | Subjects | Books
General General
Related | Operating Systems | Computers & Internet | Subjects | Books
General General
Related | Education | Nonfiction | Subjects | Books
General General
Related | Education | Professional & Technical | Subjects | Books
Look Inside Computer Books Look Inside Computer Books
Related | Trip | Specialty Stores | Books
Look Inside Nonfiction Books Look Inside Nonfiction Books
Related | Trip | Specialty Stores | Books

Book Description

Penetration testing a network requires a delicate balance of art and science. A penetration tester must be creative enough to think outside of the box to determine the best attack vector into his own network, and also be expert in using the literally hundreds of tools required to execute the plan. This book provides both the art and the science.

The authors of the book are expert penetration testers who have developed many of the leading pen testing tools; such as the Metasploit framework. The authors allow the reader inside their heads to unravel the mysteries of thins like identifying targets, enumerating hosts, application fingerprinting, cracking passwords, and attacking exposed vulnerabilities. Along the way, the authors provide an invaluable reference to the hundreds of tools included on the bootable-Linux CD for penetration testing.

* Covers both the methodology of penetration testing and all of the tools used by malicious hackers and penetration testers

* The book is authored by many of the tool developers themselves

* This is the only book that comes packaged with the Auditor Security Collection; a bootable Linux CD with over 300 of the most popular open source penetration testing tools

Customer Reviews:

5 out of 5 stars good introduction.......2007-02-22

If you live and breathe IT security, this books is for you. I would like to somewhat disagree with some of the earlier reviewers. I don't think this book was intended to be "the one and only" penetration toolkit manual. However, what it does do - it introduces one to the world of penetration testing providing enough information and examples on a wide variety of tools. A lot of great subjects are covered, such as reconnaissance, enumeration, scanning, web application testing, wireless penetration and more. It's a very insightful read, even for those who are just researching in the area of security. It will open your eyes on many aspects of information security. The CD itself is a good resource, but you may need to update some applications by now. Nessus signatures do get updated regularly.

4 out of 5 stars Solid Penetration Testing Book.......2007-02-06

At around 700 pages in size, the 'Penetration Tester's Open Source Toolkit' by Johnny Long is a solid reference material which is a nice pickup for anyone that is concerned with this subject matter. As with all Syngress books, you aren't buying these for the highest quality paper or design, but rather the material within. This is a solid book that most users should find helpful in their jobs.

**** RECOMMENDED

5 out of 5 stars Excellent reference........2007-01-22

If you are going to do any work in the Information Assurance world you will want to add this book to your shelf and keep it handy. The authors of this book know the topics and present information clearly.
Each chapter is a stand-alone lesson, and all chapters build on each other to create a big-picture of exploiting any network and reporting results. The CD that comes with the book gives you excellent tools to start or fill out your library. Some are getting dated as of this writing, but all are still solid tools that you can update once you've learned them.
I highly recommend this book!

5 out of 5 stars Good review of currently available software.......2006-09-25

Title: Penetration Tester's Open Source Toolkit
Author: Johnny Long, Aaron Bayles, James Foster, Chris Hurley, Mike Petruzzi Noam Rathaus, Mark Wolfgang
Publisher: Syngress Publishing, Inc.
800 Hingham Street
Rockland, MA 02370
Copyright: 2006
ISBN: 1597490210
Pages: 678 plus appendix and index

This book not only covers what tools are available for penetration testing but also details how to use them to effectively test the system. Some of the tools, such as whois and ping, will be very familiar to the Linux user and most power users of other operating systems. Other tools are less familiar but very powerful and a real insight into what can be done to gather information on a system before attempting to penetrate it. Part of what makes this book really interesting is the way the authors approach this subject. They don't walk the reader through all the details of a handful of tools but instead they take a task-oriented approach. For example they go first through enumerating and scanning a system, then testing databases, web server testing, web application testing, wireless penetration and network devices. They then end this section with information about writing open source security tools. Chapter 8 starts a section on the Open Source vulnerability scanner Nessus. It automatically finds many problems in the system by trying to penetrate it using various scripts. The results are captured and the generated reports detail the information it was able to obtain. This is a very powerful testing product and one of the most common ones you will find in the marketplace.
The authors detail how to set up a Nessus client and server, scan the system and understand the results. Although almost three hundred pages are dedicated to Nessus it is a very powerful and highly configurable program that can consume a full book by itself to use its full potential. Penetration Tester's Open Source Toolkit is highly recommended, insightful, and very interesting to read and experiment with.

5 out of 5 stars Excellent kickstart.......2006-03-22

Excellent kickstart for the budding pentester (such as myself) Covers as far as i can see most areas, and creating an apetite for more.

Electronics:

  1. Ajax in Action
  2. 3Com 3C16704A OfficeConnect Ethernet Hub 4-Port
  3. Linksys PCM200 EtherFast 10/100 32-Bit Integrated CardBus PC Card
  4. Allied Telesyn Centrecom Mx20T Twisted Pair Micro Transceiver with 4 Leds
  5. Lantronix Uds-10 Device Server DB25 Port RJ45 Port For Enet 110 Vac Pwr Sup
  6. Happy Feet (Widescreen Edition)
  7. 8ft PS2 KVM 3-in-1 Cable 2-hd15 4-ps2 M/m
  8. 6ft Null Modem Cable Db9f/db9f Gold Connections
  9. HP JetDirect 615N Int. 10/100 EIO 1-Port Print Server ( J6057A#ABA )
  10. Orinoco Gold 802.11b Wireless PC Card

Electronics

Electronics