Violent Python

1st Edition

A Cookbook for Hackers, Forensic Analysts, Penetration Testers and Security Engineers

Authors: TJ O'Connor
Paperback ISBN: 9781597499576
eBook ISBN: 9781597499644
Imprint: Syngress
Published Date: 8th November 2012
Page Count: 288
38.95 + applicable tax
30.99 + applicable tax
49.95 + applicable tax
Unavailable
Compatible Not compatible
VitalSource PC, Mac, iPhone & iPad Amazon Kindle eReader
ePub & PDF Apple & PC desktop. Mobile devices (Apple & Android) Amazon Kindle eReader
Mobi Amazon Kindle eReader Anything else

Institutional Access


Description

Violent Python shows you how to move from a theoretical understanding of offensive computing concepts to a practical implementation. Instead of relying on another attacker’s tools, this book will teach you to forge your own weapons using the Python programming language. This book demonstrates how to write Python scripts to automate large-scale network attacks, extract metadata, and investigate forensic artifacts. It also shows how to write code to intercept and analyze network traffic using Python, craft and spoof wireless frames to attack wireless and Bluetooth devices, and how to data-mine popular social media websites and evade modern anti-virus.

Key Features

  • Demonstrates how to write Python scripts to automate large-scale network attacks, extract metadata, and investigate forensic artifacts
  • Write code to intercept and analyze network traffic using Python. Craft and spoof wireless frames to attack wireless and Bluetooth devices
  • Data-mine popular social media websites and evade modern anti-virus

Readership

Penetration Tester, Forensic Analysts, IT Security Professionals (Security Auditors, Security Engineers, Compliance Specialists, etc.)

Table of Contents

Trade marks

Acknowledgements

Dedication

Lead Author – TJ O’Connor

Contributing Author Bio – Rob Frost

Technical Editor Bio – Mark Baggett

Introduction

TARGET AUDIENCE

ORGANIZATION OF THE BOOK

COMPANION WEB SITE

Chapter 1. Introduction

Introduction: A Penetration Test with Python

Setting Up Your Development Environment

The Python Language

Your First Python Programs

Chapter Wrap-Up

References

Chapter 2. Penetration Testing with Python

Introduction: The Morris Worm—Would it Work Today?

Building a Port Scanner

Building an SSH BotNet with Python

Mass Compromise by Bridging FTP and Web

Conficker, Why Trying Hard is Always Good Enough

Writing Your Own Zero-Day Proof of Concept Code

Chapter Wrap Up

References

Chapter 3. Forensic Investigations with Python

Introduction: How Forensics Solved the BTK Murders

Where Have You Been?—Analysis of Wireless Access Points in the Registry

Using Python to Recover Deleted Items in the Recycle Bin

Metadata

Investigating Application Artifacts with Python

Investigating iTunes Mobile Backups with Python

Chapter Wrap-Up

References

Chapter 4. Network Traffic Analysis with Python

Introduction: Operation Aurora and How the Obvious was Missed

Where is that IP Traffic Headed?—A Python Answer

Is Anonymous Really Anonymous? Analyzing LOIC Traffic

How H D Moore Solved the Pentagon’s Dilemma

Storm’s Fast-Flux and Conficker’s Domain-Flux

Kevin Mitnick and TCP Sequence Prediction

Foiling Intrusion Detection Systems with Scapy

Chapter Wrap Up

References

Chapter 5. Wireless Mayhem with Python

Introduction: Wireless (IN)Security and t

Details

No. of pages:
288
Language:
English
Copyright:
© Syngress 2013
Published:
Imprint:
Syngress
eBook ISBN:
9781597499644
Paperback ISBN:
9781597499576

About the Author

TJ O'Connor

TJ O’Connor is a Department of Defense expert on information security and a US Army paratrooper. While assigned as an assistant professor at the US Military Academy, TJ taught undergraduate courses on forensics, exploitation and information assurance. He twice co-coached the winning team at the National Security Agency’s annual Cyber Defense Exercise and won the National Defense University’s first annual Cyber Challenge. He has served on multiple red teams, including twice on the Northeast Regional Team for the National Collegiate Cyber Defense Competition. TJ holds a Master of Science degree in Computer Science from North Carolina State, a Master of Science degree in Information Security Engineering from the SANS Technical Institute, and a Bachelor of Science degree in Computer Science from the US Military Academy. He has published technical research at USENIX workshops, ACM conferences, security conferences, the SANS Reading Room, the Internet Storm Center, the Army Magazine, and the Armed Forces Journal. He holds expert cyber security credentials, including the prestigious GIAC Security Expert (GSE) and Offensive Security Certified Expert (OSCE). TJ is a member of the elite SANS Red and Blue Team Cyber Guardians. TJ O'Connor is an active duty Army Major and former faculty member at the United States Military Academy, where he taught courses on forensics, exploitation, and information assurance. He has published research at USENIX workshops, ACM Conferences, and spoken at various security conferences, including ShmooCon. He has participated in numerous cyber defense exercises, including winning the National Defense University Cyber Challenge, coaching the winning team at the National Security Agency's Cyber Defense Exercise and working as a red team member of the Northeast Regional Collegiate Cyber Defense Competition. He has earned the SANS Certifications GIAC Gold certifications in GCFA, GCIH, GSEC, GCIA, and holds other GIAC certifications.

Reviews

"An information security specialist with the US Army, O'Connor introduces the hacker's programming language Python to new users, and describes some advanced features to those who already know it." --Reference and Research Book News, August 2013

"A quick glance at [the authors] collective credentials and experience undoubtedly creates high expectations for this title… The end result is that the book demonstrates how powerful just a few dozen lines of Python code can be… useful tips and tricks will surely be acquired simply by working through the exercises." --The Ethical Hacker Network, February 2013

"Violent Python is an excellent resource that develops and enhances a diverse set of security-related Python skills. The book also serves as a great reference, where recipes could be quickly implemented to address specific issues as they arise. Readers who are actively working in an InfoSec position will likely be able to put their newly acquired skills to use immediately, and those looking to break into the field will acquire skills that differentiate themselves from others who are dependent on prebuilt tools. This title is highly recommended for anyone who wants to improve his or her Python skills within the InfoSec realm." --The Ethical Hacker Network, February 2013

"When it comes to Python and penetration testing, TJ O'Connor is the grand Python master. This is the book that keeps on giving. From building penetration testing Python scripts, to antivirus-evading penetration testing malware, to interrogating the Windows Registry and investigating other forensic artifacts...O'Connor masterfully walks the reader from basic to advanced penetration testing techniques with sample code throughout." --Ove Carroll, SANS Certified Instructor, Co-Author of SANS Forensics 408 - Windows In Depth

"Violent Python is chalked full of practical examples and is for all security profess