Penetration Testing: A Hands-On Introduction to Hacking

A really great book

This is probably the best introduction to pentesting book out there, and in the absence of a guide aligned with Offensive Security's notorious and esteemed OSCP certification, it is also the best option for anyone preparing for that course. Admittedly some of the links no longer work, but workarounds for them are easy to find if you have a search online, which is probably a skill you should be getting comfortable with if you're going down this road anyway. Weidman has mentioned on her Twitter feed that she's currently researching new vulnerabilities and material for the second edition, but I wouldn't expect to see that in the near future. Check out her free videos on Cybrary as well - her Advanced Penetration Testing course closely mirrors the layout of this book.

A little dated now but then with most tech if it goes to print its probably already outdated it moves that fast. It is still a very good solid starting point. When I was forst starting out I found that a lot of books expect people to just know things which in somw respect if you're going to read this book and be serious about it then you should brish up on other aspects raised in the book. This lays a very good foundation and even points out that some of the tutorials in it will more than likely be outdated since ita print but the processes are very similar

A very informative read which filled in some gaps in my security knowledge, having worked on the "other side" as a firewall engineer.Some of the assets required for the exercises in the book were no longer available in their original locations. However, I saw a tweet from the author in 2018 saying to just email her and she would send a link over. I did this and Georgia responded within 3 hours, which was impressive.I believe she is working on an updated version of the book, which I will buy as soon as it is out.

An excellent introduction. I downloaded the sample text and worked with it to give me a feel for the scope of the book and the level of difficulty.I then downloaded the whole text and have started work, using the latest version of Kali and adapting command lines, etc. from the book to reflect this. So far so good, but NOT for the faint hearted!Tip - I have found that the Kali Virtual Machine (in Virtual Box) runs a *lot* faster if you use a static disk size instead of the default dynamic disk. There's a lot of info on the web about this.

I decided to learn Pentesting/Ethical Hacking as a retirement project and this is the only book that actually starts at the begining, and explains in detail how to setup a testing lab on a single machine, so you can actually do some REAL testing.I'm also impressed that the book sticks to it's title and is about Pentesting and doesn't waste hundreds of pages on Coding which is how other Pentesting books fill far too many pages.I have several other Pentesting books but this way ahead of them all.

This is a very good book for beginners who wants to learn it by hands on. I recommend this book to anoyone who is interested in computer security.The only issue you will encounter is trying to install new packages on the old Kali Linux. For example, Nessus, Hyperion, Veil-Evasion, and so on. If you have this problem then I recommend you download the latest Kali Linux and installing the packages there.

In theory this is a great book - it goes into fantastic detail on penetration testing methods and techniques - including answering the how/why/what's of penetration testing - to a degree I've not yet encountered in other books (such as Kali Linux Web Penetration Testing Cookbook, which feels more like a checklist than an informative guide).However what lets this book down at the time of reading is that a lot of the setup instructions are - somewhat understandably - outdated. For example:- I didn't see any mention that you should install Kali Linux to your virtual hard drive, rather than run directly from the ISO. This is important since if running directly from ISO then you'll soon run out of space when installing the necessary packages!- Hyperion 1.0 has been supplanted by Hyperion 1.2- Mingw32 has been supplanted by Mingw-w64- Android ADT bundles are no longer available from the Android download site, you'll have to google for the final version.- Smartphone Pentest Framework has been deprecated and removed from the provided link. Given it's no longer available, I'm not sure how to proceed with that part of the book.

a great read i highly recommend it to anyone starting out in pentesting

Good product

Genial pour les niveaux intermédiaires selon moiBien expliqué dans les détails,facile à lire c'est de l'anglais techniqueJe le recommande à tous !!

Se separó la pasta de las hojas el primer día.Sin embargo, el contenido es bueno.

Dieses Buch hat eine interessante Herangehensweise, indem es kurz alle möglichen Handwerkszeuge anreist, wie z.B. UNIX Befehle, Phyton, C und die diversen Pentest Tools. Dabei betont das Buch immer wieder wie man auf dem Laufenen sein kann, da es davon ausgeht das der Inhalt hoffnungslos alt ist. Das ist etwas was ich bei anderen Büchern vermisse.