{"product_id":"black-hat-bash-creative-scripting-for-hackers-and-pentesters-9781718503748","title":"Black Hat Bash: Creative Scripting for Hackers and Pentesters","description":"\u003cb\u003eMaster the art of offensive bash scripting. This highly practical hands-on guide covers chaining commands together, automating tasks, crafting living-off-the-land attacks, and more!\u003c\/b\u003e \u003cp\u003e\u003c\/p\u003eIn the hands of the penetration tester, bash scripting becomes a powerful offensive security tool. In \u003ci\u003eBlack Hat Bash\u003c\/i\u003e, you'll learn how to use bash to automate tasks, develop custom tools, uncover vulnerabilities, and execute advanced, living-off-the-land attacks against Linux servers. You'll build a toolbox of bash scripts that will save you hours of manual work. And your only prerequisite is basic familiarity with the Linux operating system. \u003cp\u003e\u003c\/p\u003eYou'll learn the basics of bash syntax, then set up a Kali Linux lab to apply your skills across each stage of a penetration test--from initial access to data exfiltration. Along the way, you'll learn how to perform OS command injection, access remote machines, gather information stealthily, and navigate restricted networks to find the crown jewels. Hands-on exercises throughout will have you applying your newfound skills. \u003cp\u003e\u003c\/p\u003eKey topics covered include: \u003cbr\u003e\u003cul\u003e\n\u003cli\u003eBash scripting essentials: From control structures, functions, loops, and text manipulation with grep, awk, and sed.\u003c\/li\u003e\n\u003cli\u003eHow to set up your lab: Create a hacking environment with Kali and Docker and install additional tools.\u003c\/li\u003e\n\u003cli\u003eReconnaissance and vulnerability scanning: Learn how to perform host discovery, fuzzing, and port scanning using tools like Wfuzz, Nmap, and Nuclei.\u003c\/li\u003e\n\u003cli\u003eExploitation and privilege escalation: Establish web and reverse shells, and maintain continuous access.\u003c\/li\u003e\n\u003cli\u003eDefense evasion and lateral movement: Audit hosts for landmines, avoid detection, and move through networks to uncover additional targets.\u003c\/li\u003e\n\u003c\/ul\u003e\u003cbr\u003eWhether you're a pentester, a bug bounty hunter, or a student entering the cybersecurity field, \u003ci\u003eBlack Hat Bash\u003c\/i\u003e will teach you how to automate, customize, and optimize your offensive security strategies quickly and efficiently, with no true sorcery required.\u003cbr\u003e\u003cbr\u003e\u003cbr\u003e\u003cb\u003eAbout the Author\u003c\/b\u003e\u003cbr\u003e\u003cb\u003eDolev Farhi \u003c\/b\u003eis a security engineer and author of \u003ci\u003eBlack Hat GraphQL\u003c\/i\u003e (No Starch Press, 2023). He is a distinguished security engineer at Palo Alto Networks, where he uses bash daily to automate security tests and sift through network and application artifacts. \u003cp\u003e\u003c\/p\u003e\u003cb\u003eNick Aleks\u003c\/b\u003e has served as a distinguished security engineer at TD Bank and is the chief hacking officer at ASEC. He has extensive experience using bash scripting on red teams, in penetration tests, and in software development projects. Aleks is also coauthor of \u003ci\u003eBlack Hat GraphQL\u003c\/i\u003e (No Starch Press, 2023).\u003cbr\u003e","brand":"No Starch Press","offers":[{"title":"Default Title","offer_id":50891673665810,"sku":"9781718503748","price":43.99,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0831\/4771\/8930\/files\/img_84cdd62b-a4d2-4f54-b31c-7cba4f2f0c51.jpg?v=1738171039","url":"https:\/\/surprise-castle.myshopify.com\/products\/black-hat-bash-creative-scripting-for-hackers-and-pentesters-9781718503748","provider":"Surprise Castle","version":"1.0","type":"link"}