Book Description
Cybercriminals are always one step ahead, when it comes to tools and techniques. This means you need to use the same tools and adopt the same mindset to properly secure your software. This course shows you how to do just that, demonstrating how effective Python can be for powerful pentesting that keeps your software safe. Comprising of three key modules, follow each one to push your Python and security skills to the next level.
In the first module, we’ll show you how to get to grips with the fundamentals. This means you’ll quickly find out how to tackle some of the common challenges facing pentesters using custom Python tools designed specifically for your needs. You’ll also learn what tools to use and when, giving you complete confidence when deploying your pentester tools to combat any potential threat.
In the next module you’ll begin hacking into the application layer. Covering everything from parameter tampering, DDoS, XXS and SQL injection, it will build on the knowledge and skills you learned in the first module to make you an even more fluent security expert.
Finally in the third module, you’ll find more than 60 Python pentesting recipes. We think this will soon become your trusted resource for any pentesting situation.

Table of Contents
1: UNDERSTANDING THE PENETRATION TESTING METHODOLOGY
2: THE BASICS OF PYTHON SCRIPTING
3: IDENTIFYING TARGETS WITH NMAP, SCAPY, AND PYTHON
4: EXECUTING CREDENTIAL ATTACKS WITH PYTHON
5: EXPLOITING SERVICES WITH PYTHON
6: ASSESSING WEB APPLICATIONS WITH PYTHON
7: CRACKING THE PERIMETER WITH PYTHON
8: EXPLOIT DEVELOPMENT WITH PYTHON, METASPLOIT, AND IMMUNITY
9: AUTOMATING REPORTS AND TASKS WITH PYTHON
10: ADDING PERMANENCY TO PYTHON TOOLS
11: PYTHON WITH PENETRATION TESTING AND NETWORKING
12: SCANNING PENTESTING
13: SNIFFING AND PENETRATION TESTING
14: WIRELESS PENTESTING
15: FOOT PRINTING OF A WEB SERVER AND A WEB APPLICATION
16: CLIENT-SIDE AND DDOS ATTACKS
17: PENTESTING OF SQLI AND XSS
18: GATHERING OPEN SOURCE INTELLIGENCE
19: ENUMERATION
20: VULNERABILITY IDENTIFICATION
21: SQL INJECTION
22: WEB HEADER MANIPULATION
23: IMAGE ANALYSIS AND MANIPULATION
24: ENCRYPTION AND ENCODING
25: PAYLOADS AND SHELLS
26: REPORTING



共三种文件格式：pdf、epub、mobi