Implement defensive techniques in your ecosystem successfully with Python
Key Features
- Identify and expose vulnerabilities in your infrastructure with Python
- Learn custom exploit development .
- Make robust and powerful cybersecurity tools with Python
Book Description
With the current technological and infrastructural shift, penetration testing is no longer a process-oriented activity. Modern-day penetration testing demands lots of automation and innovation; the only language that dominates all its peers is Python. Given the huge number of tools written in Python, and its popularity in the penetration testing space, this language has always been the first choice for penetration testers.
Hands-On Penetration Testing with Python walks you through advanced Python programming constructs. Once you are familiar with the core concepts, you'll explore the advanced uses of Python in the domain of penetration testing and optimization. You'll then move on to understanding how Python, data science, and the cybersecurity ecosystem communicate with one another. In the concluding chapters, you'll study exploit development, reverse engineering, and cybersecurity use cases that can be automated with Python.
By the end of this book, you'll have acquired adequate skills to leverage Python as a helpful tool to pentest and secure infrastructure, while also creating your own custom exploits.
What you will learn
- Get to grips with Custom vulnerability scanner development
- Familiarize yourself with web application scanning automation and exploit development
- Walk through day-to-day cybersecurity scenarios that can be automated with Python
- Discover enterprise-or organization-specific use cases and threat-hunting automation
- Understand reverse engineering, fuzzing, buffer overflows , key-logger development, and exploit development for buffer overflows.
- Understand web scraping in Python and use it for processing web responses
- Explore Security Operations Centre (SOC) use cases
- Get to understand Data Science, Python, and cybersecurity all under one hood
Who this book is for
If you are a security consultant , developer or a cyber security enthusiast with little or no knowledge of Python and want in-depth insight into how the pen-testing ecosystem and python combine to create offensive tools , exploits , automate cyber security use-cases and much more then this book is for you. Hands-On Penetration Testing with Python guides you through the advanced uses of Python for cybersecurity and pen-testing, helping you to better understand security loopholes within your infrastructure .
Table of Contents
- Introduction to Python
- Building Python Scripts
- Concept Handling
- Advanced Python Modules
- Vulnerability Scanner Python - Part 1
- Vulnerability Scanner Python - Part 2
- Machine Learning and Cyber Security
- Automating Web Application Scanning - Part 1
- Automated Web Application Scanning - Part 2
- Building a Custom Crawler
- Reverse-Engineering Linux Applications
- Reverse Engineering Windows Applications
- Exploit Development
- Cyber Threat Intelligence
- Other Wonders of Python
- Assessments
Furqan Khan is a cybersecurity and automation enthusiast who loves to innovate in the domain of cybersecurity with the objective of exploring new age technologies like AI, ML, analytics, and amalgamating the same with cybersecurity to attain high-quality products with maximum automation and throughput.
Complementing his academic excellence with a gold medal at both master's and bachelor's degree in Engineering and full academic scholarship, Furqan has had a very rewarding industrial experience right from inception. Furqan has worked as a Research Scientist at National Institute of technology Karnataka where he developed a tool for Ministry of IT and Telecommunications for detection of Injection vulnerabilities, state violation attacks and parameter pollution in web applications.
Carrying forward his cybersecurity research and automation experience Furqan next took a role as a Senior Security researcher at Paladion Networks where he developed a vulnerability scanner which goes by the name Penetration Testing Orchestrator, a free version of which can be found on Git-hub. The tool explored the power of AI and Machine learning to automate the entire penetration testing process, thereby reducing the organizational cost by a significant factor.
Currently, Furqan is working with Wipro Dubai and has developed a Cyber Threat Intelligence platform, that automates the cyber intelligence process. The tool is highly customizable with tons of add-on features like phishing detection, social media intelligence etc. As a part of a roadmap, Furqan is actively working on more features and enhancement of the platform.
Furqan has published and co-authored high-class cyber security white papers & Journals with leading publications like Springer & Elsevier. Furqan has also presented his tool (PTO) at international conferences like CoCon as a keynote speaker and has many acclaims to his name on innovating with a blend of Python, ML, AI, Cybersecurity and Penetration Testing.
