Nmap 6: Network Exploration and Security Auditing Cookbook - Couverture souple

Présentation de l'éditeur

Want to master Nmap and its scripting engine? Then this book is for you – packed with practical tasks and precise instructions, it's a comprehensive guide to penetration testing and network monitoring. Security in depth.

Overview

• Master the power of Nmap 6
• Learn how the Nmap Scripting Engine works and develop your own scripts!
• 100% practical tasks, relevant and explained step-by-step with exact commands and optional arguments description

What will you learn

• Master the basic scanning techniques for port scanning and host discovery.
• Implement your own host monitoring system with Nmap
• Perform security checks to web applications, mail servers and databases
• Learn to gather interesting host information not included in a typical scan
• Tune scans to optimize performance
• Create reports from the scan results
• Run distributed scans through several clients
• Write your own NSE scripts

Aproach

The book is a collection of easy to follow, practical recipes with explanations of the code, and links to further information.

Who is this book written for

This book is for any security consultant, administrator or enthusiast looking to learn how to use and master Nmap and the Nmap Scripting Engine.

In Detail

Nmap is a well known security tool used by penetration testers and system administrators. The Nmap Scripting Engine (NSE) has added the possibility to perform additional tasks using the collected host information. Tasks like advanced fingerprinting and service discovery, information gathering, and detection of security vulnerabilities.

"Nmap 6: Network exploration and security auditing cookbook" will help you master Nmap and its scripting engine. You will learn how to use this tool to do a wide variety of practical tasks for pentesting and network monitoring. Finally, after harvesting the power of NSE, you will also learn how to write your own NSE scripts.

"Nmap 6: Network exploration and security auditing cookbook" is a book full of practical knowledge for every security consultant, administrator or enthusiast looking to master Nmap. The book overviews the most important port scanning and host discovery techniques supported by Nmap. You will learn how to detect mis-configurations in web, mail and database servers and also how to implement your own monitoring system.

The book also covers tasks for reporting, scanning numerous hosts, vulnerability detection and exploitation, and its strongest aspect; information gathering.

Biographie de l'auteur

Paulino Calderon Pale

Paulino Calderon Pale (@calderpwn) is a very passionate software developer and penetration tester from a Caribbean island in Mexico called Cozumel. He learned to write code and administer IT infrastructures early in his life—skills that came handy when he joined the information security industry. Today, he loves learning new technologies, penetration testing, conducting data-gathering experiments, developing software, and contributing to the open source community. He maintains a blog of his public work at http://calderonpale.com. In the summer of 2011, he joined Google's Summer of Code program to work on the Nmap project as an NSE (Nmap Scripting Engine) developer. He focused on improving the web scanning capabilities of Nmap and has produced over 20 scripts for gathering information, and detecting and exploiting security vulnerabilities since then. He is the cofounder of Websec, an information security company focused on web security operation in Mexico (http://websec.mx) and Canada (http://websec.ca), where they help companies in different industries secure their IT infrastructures