 |
VOOZH | about |
|
VOOZH | about |
Download the free Kindle app and start reading Kindle books instantly on your smartphone, tablet, or computer - no Kindle device required.
Read instantly on your browser with Kindle for Web.
Using your mobile phone camera - scan the code below and download the Kindle app.
OK
Coding for Penetration Testers: Building Better Tools, Second Edition provides readers with an understanding of the scripting languages that are commonly used when developing tools for penetration testing, also guiding users through specific examples of custom tool development and the situations where such tools might be used.
While developing a better understanding of each language, the book presents real-world scenarios and tool development that can be incorporated into a tester's toolkit. This completely updated edition focuses on an expanded discussion on the use of Powershell, and includes practical updates to all tools and coverage.
Provides readers with an understanding of the scripting languages that are commonly used when developing tools for penetration testing
Ryan has more than 15 years of experience in Information Security. He has worked as a Technical Team Leader, Database Administrator, Windows and UNIX Systems administrator, Network Engineer, Web Application developer, Systems programmer, Information Security Engineer, and is currently a Managing Consultant doing network penetration testing.
Ryan has delivered his research about ATM security, network protocol attacks, and penetration testing tactics at numerous conferences, including Black Hat, DefCon, DerbyCon, and SecTor to name a few. He is also an open source project contributor for projects such as Metasploit, Ettercap, and the Browser Exploitation Framework.
He is a published author of the book Coding For Penetration Testers, is a contributing author to The Browser Hacker's Handbook, and is currently working on the next edition of Gray Hat Hacking. Ryan graduated with a Bachelor of Science in Computer Science at North Carolina State University.
Ryan participates in Twitter as @sussurro, and invites you to follow him there. Or, you can find his blog at http://blog.happypacket.net
Dr. Jason Andress is a seasoned security professional, security researcher, and technophile. He has been writing on security topics for over a decade, covering data security, network security, hardware security, penetration testing, and digital forensics, among others.
Customer Reviews, including Product Star Ratings help customers to learn more about the product and decide whether it is the right product for them.
To calculate the overall star rating and percentage breakdown by star, we don’t use a simple average. Instead, our system considers things like how recent a review is and if the reviewer bought the item on Amazon. It also analyzed reviews to verify trustworthiness.
Learn more how customers reviews work on AmazonI’m taking a Linux scripting class and this is the book we are using. It is very well written and easy to understand. The pages are very nice and my highlighting does not bleed through.
Bought this to brush up and also increase my ability to fix scripts while on the job, i.e. something is broke and I can't fix it.
I sincerely believe this book will assist with that, after reading the Intro & Chapter 1. Here's what I'm noticing so far:
1.) Each chapter starts with a description of the language and some scripting know-how that applies to most/all languages you will run into.
2.) After learning about the basics of what goes into a script, particularly with a scripting language it's currently covering - you will be given code snippets. I suggest typing these by hand and researching/fixing any errors you might come across.
3.) End of each section regarding a scripting language, is a chunk of code - write it, fix it & then do the improvements to them before moving onto the next chapter and I'm fairly certain you'll get every penny back out of this book.
Really excellent intro to coding book for multiple languages. Some of the information is a little redundant, but I really enjoy how the example code shows where each languages strengths lie in regards to pen testing.
Great book -- practical and easy to follow examples.
"Coding for Penetration Testers: Building Better Tools (2nd Edition)" by Jason Andress and Ryan Linn is an indispensable resource for anyone looking to enhance their penetration testing skills through scripting and tool development. This book goes beyond the basics, offering a hands-on, real-world approach to writing custom security tools in Python, Perl, Ruby, and PowerShell, while also covering web scripting, scanner automation, and exploitation scripting.
What sets this book apart is its clear and structured approach. The authors do a fantastic job of explaining not just how to code, but why specific languages and techniques are effective in penetration testing. Each chapter builds upon the previous one, ensuring a progressive learning experience. Whether you're new to scripting or an experienced security professional looking to refine your skills, this book provides practical, step-by-step guidance on crafting powerful, customized security tools.
What I Loved About This Book:
1. Comprehensive yet accessible – Perfect for beginners but packed with insights for seasoned professionals.
2. Real-world application – Every example is tied to practical penetration testing scenarios, making it easy to see the value of the techniques discussed.
3. PowerShell Expansion – This edition enhances coverage on PowerShell, which is an essential tool for penetration testers and red teamers.
4. Encourages hands-on practice – The exercises and code samples encourage readers to actively write, debug, and refine scripts rather than passively read along.
5. Bridges the gap between coding and cybersecurity – A fantastic resource for security professionals looking to improve their tool development skills.
Some reviews mention minor coding errors, but if you approach this book with a practical, problem-solving mindset, these become learning opportunities—just like real-world penetration testing, where troubleshooting and debugging are part of the job.
Final Verdict:
This is a must-have for any penetration tester, ethical hacker, or cybersecurity professional looking to level up their scripting and automation skills. If you're serious about building custom tools and automating security tasks, Coding for Penetration Testers is an essential addition to your library. Highly recommended.
I am still reading this book while doing my college work but I can say that I find this book to be a good read thus far because the writer explains everything has clearly has possible.
At least one of scripts has missing parts or errors and there is no errata. I'd look around for other options if I had the chance. Over priced for what it offers
The first try to learn python was with this book. It drove me crazy because the writers and editors did not check their code. I had to google to figure out what their mistakes were before the code would compile. I have since slogged through python because I remember how much trouble this book caused me in learning it. This is a terrible book and the authors should feel bad
Guter Überblick über Anwendungsgebiete von Programmiersprachen in der OffSec. Etwas mehr Info zu jeweils wichtigen Libraries wäre schön gewesen.
![👁 OAR Study Guide: 500+ Practice Questions and Officer Aptitude Rating Test Prep [5th Edition]](https://m.media-amazon.com/images/I/51D0av4XGEL._AC_SR100,100_QL65_.jpg){kind=link}
