With hundreds of tools preinstalled, the Kali Linux distribution makes it easier for security professionals to get started with security testing quickly. But with more than 600 tools in its arsenal, Kali Linux can also be overwhelming. The new edition of this practical book covers updates to the tools, including enhanced coverage of forensics and reverse engineering.

Author Ric Messier also goes beyond strict security testing by adding coverage on performing forensic analysis, including disk and memory forensics, as well as some basic malware analysis.

• Explore the breadth of tools available on Kali Linux
• Understand the value of security testing and examine the testing types available
• Learn the basics of penetration testing through the entire attack lifecycle
• Install Kali Linux on multiple systems, both physical and virtual
• Discover how to use different security-focused tools
• Structure a security test around Kali Linux tools
• Extend Kali tools to create advanced attack techniques
• Use Kali Linux to generate reports once testing is complete

Table of Contents

Chapter 1. Foundations of Kali Linux

Chapter 2. Network Security Testing Basics

Chapter 3. Reconnaissance

Chapter 4. Looking for Vulnerabilities

Chapter 5. Automated Exploits

Chapter 6. Owning Metasploit

Chapter 7. Wireless Security Testing

Chapter 8. Web Application Testing

Chapter 9. Cracking Passwords

Chapter 10. Advanced Techniques and Concepts

Chapter 11. Reverse Engineering and Program Analysis

Chapter 12. Digital Forensics

Chapter 13. Reporting

About the Author

Ric Messier is an author, consultant, and educator who holds CCSP, GCIH, GSEC, CEH, and CISSP certifications, and has published several books on information security and digital forensics. With decades of experience in information technology and information security, Ric has held the varied roles of programmer, system administrator, network engineer, security engineering manager, VoIP engineer, consultant, and professor. He is currently a Principal Security Consultant with Mandiant, now part of Google Cloud.