Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Hacking con Python

39,666 views

Published on

Índice de contenidos del libro "Hacking con Python" escrito por Daniel Echevarri y publicado por 0xWord. Más información en: http://0xword.com/es/libros/67-hacking-con-python.html

Published in: Technology
  • DOWNLOAD THAT BOOKS INTO AVAILABLE FORMAT (2019 Update) ......................................................................................................................... ......................................................................................................................... Download Full PDF EBOOK here { http://bit.ly/2m77EgH } ......................................................................................................................... Download Full EPUB Ebook here { http://bit.ly/2m77EgH } ......................................................................................................................... Download Full doc Ebook here { http://bit.ly/2m77EgH } ......................................................................................................................... Download PDF EBOOK here { http://bit.ly/2m77EgH } ......................................................................................................................... Download EPUB Ebook here { http://bit.ly/2m77EgH } ......................................................................................................................... Download doc Ebook here { http://bit.ly/2m77EgH } ......................................................................................................................... ......................................................................................................................... ................................................................................................................................... eBook is an electronic version of a traditional print book that can be read by using a personal computer or by using an eBook reader. (An eBook reader can be a software application for use on a computer such as Microsoft's free Reader application, or a book-sized computer that is used solely as a reading device such as Nuvomedia's Rocket eBook.) Users can purchase an eBook on diskette or CD, but the most popular method of getting an eBook is to purchase a downloadable file of the eBook (or other reading material) from a Web site (such as Barnes and Noble) to be read from the user's computer or reading device. Generally, an eBook can be downloaded in five minutes or less ......................................................................................................................... .............. Browse by Genre Available eBooks .............................................................................................................................. Art, Biography, Business, Chick Lit, Children's, Christian, Classics, Comics, Contemporary, Cookbooks, Manga, Memoir, Music, Mystery, Non Fiction, Paranormal, Philosophy, Poetry, Psychology, Religion, Romance, Science, Science Fiction, Self Help, Suspense, Spirituality, Sports, Thriller, Travel, Young Adult, Crime, Ebooks, Fantasy, Fiction, Graphic Novels, Historical Fiction, History, Horror, Humor And Comedy, ......................................................................................................................... ......................................................................................................................... .....BEST SELLER FOR EBOOK RECOMMEND............................................................. ......................................................................................................................... Blowout: Corrupted Democracy, Rogue State Russia, and the Richest, Most Destructive Industry on Earth,-- The Ride of a Lifetime: Lessons Learned from 15 Years as CEO of the Walt Disney Company,-- Call Sign Chaos: Learning to Lead,-- StrengthsFinder 2.0,-- Stillness Is the Key,-- She Said: Breaking the Sexual Harassment Story That Helped Ignite a Movement,-- Atomic Habits: An Easy & Proven Way to Build Good Habits & Break Bad Ones,-- Everything Is Figureoutable,-- What It Takes: Lessons in the Pursuit of Excellence,-- Rich Dad Poor Dad: What the Rich Teach Their Kids About Money That the Poor and Middle Class Do Not!,-- The Total Money Makeover: Classic Edition: A Proven Plan for Financial Fitness,-- Shut Up and Listen!: Hard Business Truths that Will Help You Succeed, ......................................................................................................................... .........................................................................................................................
       Reply 
    Are you sure you want to  Yes  No
    Your message goes here
  • interesante
       Reply 
    Are you sure you want to  Yes  No
    Your message goes here

Hacking con Python

  1. 1. Índice 7 Índice Introducción ...............................................................................................11 Capítulo I Ataques en el segmento de red local.........................................................13 1.1 Redes Virtuales Privadas........................................................................................13 1.1.1 OpenVPN......................................................................................................................... 14 1.1.2 Hamachi ........................................................................................................................... 20 .................................................................................................24 1.2.1 ICMP SHELL – ISHELL................................................................................................. 24 1.2.2 SoICMP............................................................................................................................ 26 1.2.3 ICMPSH........................................................................................................................... 27 Capítulo II Fuzzing y depuración de software............................................................29 2.1 Procesos de fuzzing con Sulley Framework..........................................................29 2.1.1 Sulley Framework vs Ability Server................................................................................ 30 ........................................................................................... 33 ....................................................35 2.3 Rutinas de depuración con Immunity Debbuger................................................................. 38 2.3.1 Uso de Mona.py en Inmmunity Debugger....................................................................... 38 2.3.2 Uso de la API de Immunity Debugger............................................................................. 40 .................................................46 PE (Portable Executable) con PEFile.......................... 46 PyDASM..................................................... 51 2.5 Análisis de memoria................................................................................................52 2.5.1 Volcado y generación de imágenes de memoria con MDD y ProcDump........................ 53 2.5.2 Volatility Framework........................................................................................................ 55 ...........................................................72 ................................ 73
  2. 2. 8 Hacking con Python .......................................................................... 77 2.6.3 Envío y análisis de muestras de Malware utilizando Cuckoo.......................................... 78 2.7 Evasión de antivirus................................................................................................82 .......................................................................................... 82 2.7.2 Veil Framework para evasión de Anti-Virus .................................................................... 84 Capítulo III Anonimato con Python ..............................................................................91 TOR (The Onion Router)..................................................92 3.1.1 Uso de STEM para controlar una instancia local de TOR............................................... 94 ............................. 97 3.1.3 Estableciendo conexiones contra circuitos de TOR desde Python .................................. 99 3.1.4 Túneles VPN sobre Hidden services en TOR con OnionCat......................................... 101 3.1.5 Ataques comunes en TOR.............................................................................................. 105 3.1.6 Utilizando Tortazo para atacar repetidores de salida en TOR.........................................111 I2P............................................................130 3.2.1 Servicio de NetDB en I2P para la construcción de túneles............................................ 135 3.2.2 Clientes y servicios en I2P............................................................................................. 139 I2P........................ 140 OnionCat/Garlicat en I2P .................................................................. 155 3.2.5 Streaming Library y BOB en I2P................................................................................... 158 3.3 Análisis comparativo entre I2P, TOR y Freenet.................................................171 3.3.1 TOR vs I2P..................................................................................................................... 172 3.3.2 Freenet vs TOR .............................................................................................................. 173 3.3.3 I2P vs Freenet................................................................................................................. 174 Capítulo IV Amenazas Persistentes Avanzadas..........................................................177 4.1 ¿Qué es una APT? (Advanced Persistent Threat) .............................................177 4.2 ¿Qué no es una APT?............................................................................................179 ........................................179 4.3.1 Hacktivistas.................................................................................................................... 180 4.3.2 Grupos y sindicatos criminales ..................................................................................... 181 ................................................ 182 ..........................................................................182 .......................................................................................................... 182 4.4.2 Comprometer el objetivo................................................................................................ 183 4.4.3 Reconocer el entorno del objetivo.................................................................................. 183
  3. 3. Índice 9 4.4.4 Extender el ataque desde el interior............................................................................... 184 .................................................. 184 4.4.6 Gestión y Mantenimiento............................................................................................... 184 .......................................185 4.5.1 Inyección de código malicioso en procesos bajo sistemas Windows ............................ 186 4.5.2 Inyección de código malicioso en procesos bajo sistemas Linux ................................. 195 4.5.3 Inyección de código malicioso en procesos Python sobre sistemas Linux con Pyrasite .... 203 4.5.4 Creación de herramientas para espiar y registrar la actividad de las víctimas............... 209 4.5.5 Uso de PyMal para el análisis de Malware.................................................................... 246 4.5.6 Uso de Yara para el análisis de Malware........................................................................ 255 4.6 Usando de DJango para localizar y representar visualmente servidores en In- ternet ............................................................................................................................259 4.6.1 Introducción a Django.................................................................................................... 259 4.6.2 Panel de control básico para una botnet utilizando Django y GeoDjango..................... 260 TOR usando Django y GeoDjango . 273 .......................................................................................279 Índice de imágenes ...................................................................................283

×