29

Aug'15

Workshop’s eBook: PenTest Advanced Training. Reconnaissance and information gathering, network scanning, SQL Injection, Cross-Site Scripting

Dear Reader, In this new issue, an advanced PenTest Training is introduced for you on the basis of our experts practical experiences. Our newly developed training includes main five modules in addition to the side tutorials as follows: Module 01 – Reconnaissance and information gathering Module 02 – Network Scanning: The Basics Module Module 03 – Exploitation Module Module 04 – Post exploitation Module Module 05 – Basics of SQL Injection for different databases Cross-Site Scripting tutorial

Read More

28

Jul'15

PENTESTING TUTORIALS: LEARN “HOW TO”. The best practical guide for everyone who’d like to become an expert in penetration testing field!

The best practical guide for everyone who’d like to become an expert in penetration testing field! Exploiting VoIP Systems: understand the Session Initiation Protocol and Real Time Protocol; wireless Client side Attacks; how to capture and analyze network traffic on Android devices and extract sensitive information and files from a packet capture from an Android device; learn risk mitigation strategies, install and configure Kali Linux, and understand the penetration testing standards; Session Hijacking and more...

Read More

09

Jun'15

Penetration Testing in Practice: develop your skills!

This issue is very practical guide that will show you how to become an expert in that field. It includes ONLY practical materials! Inside, you will find a few interesting tutorials that will help you develop your skills: Sample Penetration Testing Report; Try to write your own rule for detecting concrete signatures in network traffic in SnortIDS or SurricataIDS; How to detect the vulnerabilities used in XSS attacks; Broken Authentication and Session Management; Deploy a fully sand boxed network running on Virtualbox to do all the testing you need; Configure and deploy a fully working Cisco Router and more...

Read More

19

May'15

Workshop’s eBook: Inside IDS Systems with SNORT and OSSIM. Learn the principles of intrusion detection process, algorithms used in IDS

Install Snort by yourself and make sure of detecting basic attacks; configure and run open-source Snort and write Snort signatures; configure and run open-source Bro to provide a hybrid traffic analysis framework; use open-source traffic analysis tools to identify signs of an intrusion; write your own rule for detecting concrete signatures in network traffic in SnortIDS or SurricataIDS; test anomaly detection preprocessor for Snort – PHAD; install OSSIM (opensource SIEM) and setup it to collect events. Setup event correlation; write tcpdump filters to selectively examine a particular traffic trait; use the open-source network flow tool SiLK to find network behavior anomalies; use your knowledge of network architecture and hardware to customize placement of IDS sensors and sniff traffic off the wire.

Read More

11

Apr'15

Workshop’s eBook: Exploiting VoIP Systems. Understand the Session Initiation Protocol and Real Time Protocol

Understand the Session Initiation Protocol and Real Time Protocol: This issue will introduce the VoIP world to the reader, with a particular focus on the network protocols used by VoIP systems and the security holes belonging to them. The reader will see both theoretical and practical aspects about VoIP attacks and relatives countermeasures. Several activities will be explained step by step in the following lessons. In particular, after this workshop the reader will be able to: setting up a Private Branch eXchange (PBX) – such as Asterisk – and softphones – such as ZoIPer and X-Lite -, in order to set up a basic VoIP telephone call between two end points; understanding the Session Initiation Protocol (SIP) and Real Time Protocol (RTP). These are the two main network protocol and they’re used by all VoIP systems; knowing about several VoIP attacks and performing some of that.

Read More

22

Mar'15

Workshop’s eBook: Journey In The World of The XSS. The mechanics behind Cross-Site Scripting vulnerabilities and attacks.

The mechanics behind Cross-Site Scripting vulnerabilities and attacks: detect and exploit XSS vulnerability; understand the real risk behind this kind of of vulnerability; impress your customers with awesome Proof of Concept far beyond the classic pop-up; useful Javascript functions to exploit XSS; write your first XSS exploit; detect the vulnerabilities that allow you to perform XPS attacks; common tools useful during a pentest to perform XSS attacks.

Read More

27

Feb'15

Pentest Open November’2014

Dear PenTest Readers! PenTest team is really delighted to declare a new issue of PenTest magazine. In this event, a …

Read More

03

Jan'15

GET YOUR FREE ARTICLE PACK TODAY!

Table of Contents:   1) Configuring your machine for Pentestingby Cristian Stoica 2) Pentesting Mobileby Longinus Timochenco 3) Building a …

Read More

03

Dec'14

PENTEST OPEN 03/2014 | EXTRA TIPS AND ADVICES

Dear PenTest Readers!We have launched the last Open issue this winter. It is a great pleasure for us to star …

Read More

03

Oct'14

KALI LINUX TEASER

Dear PenTest Readers, We would like to present a new issue of Pentest Magazine. If you have heard about one of the most …

Read More

© HAKIN9 MEDIA SP. Z O.O. SP. K. 2013