Penetration testing is the simulation of an unethical attack of a computer system or other facility in order to prove the vulnerability of that system in the event of a real attack. The Certified Penetration Testing Engineer (CPTE) examination is a widely recognised certification for penetration testers.
Penetration Testing: Protecting networks and systems is a preparation guide for the CPTE examination. It describes the range of techniques employed by professional pen testers, and also includes advice on the preparation and delivery of the test report.
The author’s in-the-field experiences, combined with other real-world examples, are used to illustrate common pitfalls that can be encountered during testing and reporting. Special attention is also paid to new technologies that improve business operations, but which can create new vulnerabilities, such as employee remote access, wireless communications and public-facing web applications.
This book will give you a better understanding of how to conduct a penetration test, and also how to deliver a client-focused report that assesses the security of the system and whether the level of risk to the organisation is within acceptable levels.
This book is a general reference for experienced penetration testers, ethical hackers, auditors, security personnel and anyone else involved in the security of an organisation’s computer systems.
Understand the principles of ethical hacking and prepare for the CPTE examination.
1: Introduction to Penetration Testing
2: Preparing to Conduct a Penetration Test
4: Active Reconnaissance and Enumeration
5: Vulnerability Assessments
6: Hacking Windows and UNIX
7: Launching the Attack
8: Attacking Web Applications
9: Preparing the Report