<link href="style.css" rel="stylesheet" type="text/css"/><meta content="text/html; charset=utf-8" http-equiv="Content-Type"/> <meta content="urn:uuid:e0000000-0000-0000-0000-000000740483" name="Adept.expected.resource"/></head><body><div id="B978-1-59749-627-8.10018-2-21"/><div class="ref-list" id="indexS"><div class="sec-title2" id="indsect0105">S</div><div class="index-item" id="idx2692"><div class="index-heading">“sa” account</div><div class="index-item" id="idx2693"><div class="index-heading">database creation challenge</div><a href="B9781597496278100054.xhtml#B978-1-59749-627-8.10005-4">215</a></div><div class="index-item" id="idx2694"><div class="index-heading">Microsoft SQL Server</div><div class="index-item" id="idx2695"><div class="index-heading">roles and permissions</div><a href="B9781597496278100054.xhtml#p0265">195</a></div><div class="index-item" id="idx2696"><div class="index-heading">users</div><a href="B9781597496278100054.xhtml#p0185">194</a></div></div><div class="index-item" id="idx2697"><div class="index-heading">mssql_login</div><a href="B9781597496278100054.xhtml#p0295">197</a></div></div><div class="index-item" id="idx2698"><div class="index-heading">Safety considerations, pen-test lab</div><div class="index-item" id="idx2699"><div class="index-heading">basic considerations</div><a href="B9781597496278100108.xhtml#s0065">381</a></div><div class="index-item" id="idx2700"><div class="index-heading">CD labeling</div><a href="B9781597496278100108.xhtml#p0270">378–379</a></div><div class="index-item" id="idx2701"><div class="index-heading">data transfer</div><a href="B9781597496278100108.xhtml#s0045">378</a></div><div class="index-item" id="idx2702"><div class="index-heading">destruction and sanitization</div><a href="B9781597496278100108.xhtml#s0055">379–380</a></div><div class="index-item" id="idx2703"><div class="index-heading">documentation</div><a href="B9781597496278100108.xhtml#s0060">380–381</a></div><div class="index-item" id="idx2704"><div class="index-heading">install disk security</div><a href="B9781597496278100108.xhtml#s0040">377–378</a></div><div class="index-item" id="idx2705"><div class="index-heading">network configuration</div><a href="B9781597496278100108.xhtml#s0035">376–377</a></div><div class="index-item" id="idx2706"><div class="index-heading">network isolation</div><a href="B9781597496278100108.xhtml#s0030">374–376</a></div><div class="index-item" id="idx2707"><div class="index-heading">overview</div><a href="B9781597496278100108.xhtml#s0025">373–374</a></div></div><div class="index-item" id="idx2708"><div class="index-heading">Samurai Web Testing Framework</div><div class="index-item" id="idx2709"><div class="index-heading">as popular toolkit</div><a href="B9781597496278100017.xhtml#s0100">15</a></div><div class="index-item" id="idx2710"><div class="index-heading">screenshot</div><a href="B9781597496278100017.xhtml#f0040">16f</a></div></div><div class="index-item" id="idx2711"><div class="index-heading">SAN</div><div class="see-also"><i>see</i><a href="B9781597496278100182-21.xhtml#idx2947">Storage area networks (SAN)</a></div></div><div class="index-item" id="idx2712"><div class="index-heading">SAP system, enterprise applications</div><a href="B9781597496278100030.xhtml#p0360">102</a> , <a href="B9781597496278100030.xhtml#p1305">128</a></div><div class="index-item" id="idx2713"><div class="index-heading">sapyto</div><div class="index-item" id="idx2714"><div class="index-heading">connectors</div><a href="B9781597496278100030.xhtml#p0370">102</a></div><div class="index-item" id="idx2715"><div class="index-heading">enterprise application case study</div><a href="B9781597496278100030.xhtml#f0065">118f</a> , <a href="B9781597496278100030.xhtml#p1315">128</a></div><div class="index-item" id="idx2716"><div class="index-heading">enterprise application testing</div><a href="B9781597496278100030.xhtml#s0075">104</a></div><div class="index-item" id="idx2717"><div class="index-heading">main screens</div><a href="B9781597496278100030.xhtml#f0035">111f</a></div><div class="index-item" id="idx2718"><div class="index-heading">plugins</div><a href="B9781597496278100030.xhtml#f0045">102</a> , <a href="B9781597496278100030.xhtml#p0395">113</a></div><div class="index-item" id="idx2719"><div class="index-heading">target discovery</div><a href="B9781597496278100030.xhtml#f0040">112f</a></div></div><div class="index-item" id="idx2720"><div class="index-heading">Scalability</div><div class="index-item" id="idx2721"><div class="index-heading">definition</div><a href="B9781597496278100030.xhtml#p0075">96</a></div><div class="index-item" id="idx2722"><div class="index-heading">enterprise applications</div><a href="B9781597496278100030.xhtml#s0025">97–109</a></div><div class="index-item" id="idx2723"><div class="index-heading">vertical-horizontal combination</div><a href="B9781597496278100030.xhtml#s0030">293</a></div></div><div class="index-item" id="idx2724"><div class="index-heading">Scanning (vulnerability assessment)</div><div class="index-item" id="idx2725"><div class="index-heading">approach</div><a href="B9781597496278100030.xhtml#s0030">97–98</a></div><div class="index-item" id="idx2726"><div class="index-heading">basic considerations</div><a href="B9781597496278100030.xhtml#s0025">97–109</a></div><div class="index-item" id="idx2727"><div class="index-heading">enumeration approach</div><a href="B9781597496278100030.xhtml#p0630">110–111</a></div><div class="index-item" id="idx2728"><div class="index-heading">external penetration test case study</div><div class="index-item" id="idx2729"><div class="index-heading">Nmap fingerprinting</div><a href="B9781597496278100030.xhtml#f0130">131f</a></div><div class="index-item" id="idx2730"><div class="index-heading">Nmap results</div><a href="B9781597496278100030.xhtml#f0125">130f</a></div><div class="index-item" id="idx2731"><div class="index-heading">overview</div><a href="B9781597496278100030.xhtml#s0240">129</a></div></div><div class="index-item" id="idx2732"><div class="index-heading">hands-on challenge</div><a href="B9781597496278100030.xhtml#s0260">138</a></div><div class="index-item" id="idx2733"><div class="index-heading">internal penetration test case study</div><div class="index-item" id="idx2734"><div class="index-heading">nbtscan results</div><a href="B9781597496278100030.xhtml#f0140">134f</a></div><div class="index-item" id="idx2735"><div class="index-heading">Nmap ping sweep</div><a href="B9781597496278100030.xhtml#f0135">132f</a></div><div class="index-item" id="idx2736"><div class="index-heading">overview</div><a href="B9781597496278100030.xhtml#s0245">131–134</a></div></div><div class="index-item" id="idx2737"><div class="index-heading">Nbtscan</div><a href="B9781597496278100030.xhtml#p1240">127–128</a></div><div class="index-item" id="idx2738"><div class="index-heading">Netenum ping sweep</div><a href="B9781597496278100030.xhtml#s0100">107</a> , <a href="B9781597496278100030.xhtml#f0025">108f</a></div><div class="index-item" id="idx2739"><div class="index-heading">network devices, open source tools</div><div class="index-item" id="idx2740"><div class="index-heading">ASS</div><a href="B9781597496278100078.xhtml#s0090">274–276</a> , <a href="B9781597496278100078.xhtml#f0055">275f</a></div><div class="index-item" id="idx2741"><div class="index-heading">Nmap</div><a href="B9781597496278100078.xhtml#s0085">271–274</a> , <a href="B9781597496278100078.xhtml#f0035">272f</a> , <a href="B9781597496278100078.xhtml#f0040">273f</a> , <a href="B9781597496278100078.xhtml#f0050">274f</a></div><div class="index-item" id="idx2742"><div class="index-heading">overview</div><a href="B9781597496278100078.xhtml#s0080">271</a></div></div><div class="index-item" id="idx2743"><div class="index-heading">Nmap tool</div><div class="index-item" id="idx2744"><div class="index-heading">basic scripting</div><a href="B9781597496278100030.xhtml#s0080">104</a></div><div class="index-item" id="idx2745"><div class="index-heading">ICMP options</div><a href="B9781597496278100030.xhtml#s0070">268</a></div><div class="index-item" id="idx2746"><div class="index-heading">options</div><a href="B9781597496278100030.xhtml#t0010">100t–101t</a></div><div class="index-item" id="idx2747"><div class="index-heading">output options</div><a href="B9781597496278100030.xhtml#s0075">104</a></div><div class="index-item" id="idx2748"><div class="index-heading">overview</div><a href="B9781597496278100030.xhtml#s0060">102</a></div><div class="index-item" id="idx2749"><div class="index-heading">ping sweep</div><a href="B9781597496278100030.xhtml#s0065">102–103</a> , <a href="B9781597496278100030.xhtml#f0010">103f</a></div><div class="index-item" id="idx2750"><div class="index-heading">port-scanning options</div><a href="B9781597496278100030.xhtml#s0090">105–106</a></div><div class="index-item" id="idx2751"><div class="index-heading">result parsing</div><a href="B9781597496278100030.xhtml#f0015">104f</a></div><div class="index-item" id="idx2752"><div class="index-heading">speed options</div><a href="B9781597496278100030.xhtml#s0085">104–105</a></div><div class="index-item" id="idx2753"><div class="index-heading">stealth scanning</div><a href="B9781597496278100030.xhtml#s0095">106–107</a></div><div class="index-item" id="idx2754"><div class="index-heading">TCP SYN scan</div><a href="B9781597496278100030.xhtml#f0020">106f</a></div><div class="index-item" id="idx2755"><div class="index-heading">timing templates</div><a href="B9781597496278100030.xhtml#t0015">105t</a></div></div><div class="index-item" id="idx2756"><div class="index-heading">noisy custom malware</div><a href="B9781597496278100042.xhtml#p0825">171</a></div><div class="index-item" id="idx2757"><div class="index-heading">noisy (IDS) testing case study</div><div class="index-item" id="idx2758"><div class="index-heading">Hping SYN flood</div><a href="B9781597496278100030.xhtml#f0155">137f</a></div><div class="index-item" id="idx2759"><div class="index-heading">Nmap SYN scan with background noise</div><a href="B9781597496278100030.xhtml#f0160">137f</a></div><div class="index-item" id="idx2760"><div class="index-heading">overview</div><a href="B9781597496278100030.xhtml#s0255">136–137</a></div></div><div class="index-item" id="idx2761"><div class="index-heading">objective</div><a href="B9781597496278100030.xhtml#s0010">95</a></div><div class="index-item" id="idx2762"><div class="index-heading">open source tools</div><a href="B9781597496278100030.xhtml#p0300">101</a></div><div class="index-item" id="idx2763"><div class="index-heading">port scanning</div><a href="B9781597496278100030.xhtml#s0045">99–101</a></div><div class="index-item" id="idx2764"><div class="index-heading">post-completion steps</div><a href="B9781597496278100030.xhtml#p0050">95</a></div><div class="index-item" id="idx2765"><div class="index-heading">process</div><a href="B9781597496278100030.xhtml#s0040">98–99</a></div><div class="index-item" id="idx2766"><div class="index-heading">purpose</div><a href="B9781597496278100030.xhtml#s0020">96–97</a></div><div class="index-item" id="idx2767"><div class="index-heading">“Rules of Engagement” document</div><a href="B9781597496278100030.xhtml#p0080">96</a></div><div class="index-item" id="idx2768"><div class="index-heading">sapyto basics</div><a href="B9781597496278100030.xhtml#p0360">303</a></div><div class="index-item" id="idx2769"><div class="index-heading">SMB considerations</div><a href="B9781597496278100030.xhtml#p1235">127</a></div><div class="index-item" id="idx2770"><div class="index-heading">stealthy penetration test case study</div><div class="index-item" id="idx2771"><div class="index-heading">Nmap scan results</div><a href="B9781597496278100030.xhtml#f0145">135f</a></div><div class="index-item" id="idx2772"><div class="index-heading">overview</div><a href="B9781597496278100030.xhtml#s0250">134–136</a></div><div class="index-item" id="idx2773"><div class="index-heading">targeted Nmap scan results</div><a href="B9781597496278100030.xhtml#f0150">136f</a></div></div><div class="index-item" id="idx2774"><div class="index-heading">TCP <i>vs.</i> UDP scanning</div><a href="B9781597496278100030.xhtml#s0050">99–101</a></div><div class="index-item" id="idx2775"><div class="index-heading">Unicornscan</div><a href="B9781597496278100030.xhtml#s0105">108</a> , <a href="B9781597496278100030.xhtml#f0030">109f</a></div><div class="index-item" id="idx2776"><div class="index-heading">vulnerability scanners</div><a href="B9781597496278100030.xhtml#p0590">109</a></div><div class="index-item" id="idx2777"><div class="index-heading">wireless penetration testing</div><a href="B9781597496278100030.xhtml#p0075">320</a></div></div><div class="index-item" id="idx2778"><div class="index-heading">Scripting</div><div class="index-item" id="idx2779"><div class="index-heading">Cisco HTTP Configuration Arbitrary Administrative Access Vulnerability</div><a href="B9781597496278100078.xhtml#p0930">281</a></div><div class="index-item" id="idx2780"><div class="index-heading">database installation</div><a href="B9781597496278100054.xhtml#p0120">192</a></div><div class="index-item" id="idx2781"><div class="index-heading">DigDug</div><a href="B9781597496278100029.xhtml#p1565">65–66</a></div><div class="index-item" id="idx2782"><div class="index-heading">manual WEP cracking</div><a href="B9781597496278100030.xhtml#p1505">357</a></div><div class="index-item" id="idx2783"><div class="index-heading">Nmap</div><a href="B9781597496278100030.xhtml#s0080">104</a> , <a href="B9781597496278100030.xhtml#s0230">128</a> , <a href="B9781597496278100030.xhtml#f0120">129f</a></div></div><div class="index-item" id="idx2784"><div class="index-heading">SD card, toolkit booting</div><a href="B9781597496278100017.xhtml#p0140">3</a></div><div class="index-item" id="idx2785"><div class="index-heading">Search engines</div><div class="see-also"><i>see also</i><a href="B9781597496278100182-04.xhtml#idx203">Bing</a> ; <a href="B9781597496278100182-09.xhtml#idx1105">Google</a> ; <a href="B9781597496278100182-27.xhtml#idx3551">Yahoo!</a></div><div class="index-item" id="idx2786"><div class="index-heading">human-based search engines</div><a href="B9781597496278100029.xhtml#s0040">35–36</a></div><div class="index-item" id="idx2787"><div class="index-heading">for intelligence gathering</div><div class="index-item" id="idx2788"><div class="index-heading">crawler-based engines</div><a href="B9781597496278100029.xhtml#s0035">34</a></div><div class="index-item" id="idx2789"><div class="index-heading">overview</div><a href="B9781597496278100029.xhtml#s0030">34</a></div></div></div><div class="index-item" id="idx2790"><div class="index-heading">Secondary domain name system (DNS) server, network device footprinting</div><a href="B9781597496278100078.xhtml#p0335">268</a></div><div class="index-item" id="idx2791"><div class="index-heading">Secure Shell (SSH)</div><div class="index-item" id="idx2792"><div class="index-heading">CoWPAtty</div><a href="B9781597496278100030.xhtml#p1525">358</a> , <a href="B9781597496278100030.xhtml#p1535">359</a></div><div class="index-item" id="idx2793"><div class="index-heading">enumeration service identification</div><a href="B9781597496278100030.xhtml#p0645">111–112</a></div><div class="index-item" id="idx2794"><div class="index-heading">Finger enumeration</div><a href="B9781597496278100078.xhtml#p0650">276</a></div><div class="index-item" id="idx2795"><div class="index-heading">Netcat</div><a href="B9781597496278100030.xhtml#p0780">118</a></div><div class="index-item" id="idx2796"><div class="index-heading">stealthy penetration test case study</div><a href="B9781597496278100030.xhtml#p1695">135–136</a></div></div><div class="index-item" id="idx2797"><div class="index-heading">Secure Shell (SSH) host keys, Nmap banner grabbing</div><a href="B9781597496278100030.xhtml#p0755">117</a></div><div class="index-item" id="idx2798"><div class="index-heading">Secure Socket Layer (SSL), external penetration test</div><a href="B9781597496278100030.xhtml#p1350">130</a></div><div class="index-item" id="idx2799"><div class="index-heading">SELECT statement</div><div class="index-item" id="idx2800"><div class="index-heading">Microsoft SQL Server, roles and permissions</div><a href="B9781597496278100054.xhtml#p0270">195</a></div><div class="index-item" id="idx2801"><div class="index-heading">SQL definition</div><a href="B9781597496278100054.xhtml#p0100">191</a></div></div><div class="index-item" id="idx2802"><div class="index-heading">SensePost case study</div><div class="index-item" id="idx2803"><div class="index-heading">intelligence gathering</div><a href="B9781597496278100029.xhtml#p3020">85–86</a> , <a href="B9781597496278100029.xhtml#f0155">85f</a> , <a href="B9781597496278100029.xhtml#f0160">86f</a> , <a href="B9781597496278100029.xhtml#f0165">88f</a></div><div class="index-item" id="idx2804"><div class="index-heading">verification</div><a href="B9781597496278100029.xhtml#p3165">90</a></div></div><div class="index-item" id="idx2805"><div class="index-heading">Service identification, enumeration</div><a href="B9781597496278100030.xhtml#s0130">111</a></div><div class="index-item" id="idx2806"><div class="index-heading">Service set identifier (SSID)</div><div class="index-item" id="idx2807"><div class="index-heading">Kismet</div><a href="B9781597496278100030.xhtml#p0465">333–334</a> , <a href="B9781597496278100030.xhtml#p0585">336</a></div><div class="index-item" id="idx2808"><div class="index-heading">wireless penetration case study</div><a href="B9781597496278100030.xhtml#p0050">368</a></div><div class="index-item" id="idx2809"><div class="index-heading">WLAN without encryption</div><a href="B9781597496278100030.xhtml#p0265">327</a></div><div class="index-item" id="idx2810"><div class="index-heading">WLAN information gathering</div><a href="B9781597496278100030.xhtml#p0440">333</a></div><div class="index-item" id="idx2811"><div class="index-heading">WPA2</div><a href="B9781597496278100030.xhtml#p0125">322</a></div><div class="index-item" id="idx2812"><div class="index-heading">WPA-PSK vulnerabilities</div><a href="B9781597496278100030.xhtml#p0165">323–324</a></div></div><div class="index-item" id="idx2813"><div class="index-heading">Service set identifier (SSID) Broadcast Beacon, WLAN discovery</div><a href="B9781597496278100030.xhtml#p0195">325</a></div><div class="index-item" id="idx2814"><div class="index-heading">SET</div><div class="see-also"><i>see</i><a href="B9781597496278100182-21.xhtml#idx2864">Social-Engineer Toolkit (SET)</a></div></div><div class="index-item" id="idx2815"><div class="index-heading">SID, Oracle databases</div><a href="B9781597496278100054.xhtml#p0495">205</a> , <a href="B9781597496278100054.xhtml#p0650">209</a></div><div class="index-item" id="idx2816"><div class="index-heading">sid_brute, Oracle databases</div><a href="B9781597496278100054.xhtml#s0115">205</a></div><div class="index-item" id="idx2817"><div class="index-heading">Simple Mail Transport Protocol (SMTP)</div><div class="index-item" id="idx2818"><div class="index-heading">banner verification</div><a href="B9781597496278100029.xhtml#f0130">80f</a></div><div class="index-item" id="idx2819"><div class="index-heading">enumeration service identification</div><a href="B9781597496278100030.xhtml#p0645">111–112</a></div><div class="index-item" id="idx2820"><div class="index-heading">footprinting</div><a href="B9781597496278100029.xhtml#s0135">54–55</a> , <a href="B9781597496278100029.xhtml#s0160">58</a> , <a href="B9781597496278100029.xhtml#f0070">58f</a> , <a href="B9781597496278100029.xhtml#f0075">59f</a></div><div class="index-item" id="idx2821"><div class="index-heading">header in RFC 2822 format</div><a href="B9781597496278100029.xhtml#f0065">54f</a></div><div class="index-item" id="idx2822"><div class="index-heading">internal penetration test case study</div><a href="B9781597496278100030.xhtml#p1370">131–132</a></div><div class="index-item" id="idx2823"><div class="index-heading">Nmap banner grabbing</div><a href="B9781597496278100030.xhtml#p0755">117</a></div><div class="index-item" id="idx2824"><div class="index-heading">stealthy penetration test case study</div><a href="B9781597496278100030.xhtml#p1695">135–136</a></div></div><div class="index-item" id="idx2825"><div class="index-heading">Simple Network Management Protocol (SNMP)</div><div class="index-item" id="idx2826"><div class="index-heading">enumeration</div><a href="B9781597496278100030.xhtml#s0165">115</a><div class="index-item" id="idx2827"><div class="index-heading">overview</div><a href="B9781597496278100030.xhtml#s0210">124</a></div><div class="index-item" id="idx2828"><div class="index-heading">snmpenum.pl</div><a href="B9781597496278100030.xhtml#s0220">125–127</a> , <a href="B9781597496278100030.xhtml#f0110">126f</a></div><div class="index-item" id="idx2829"><div class="index-heading">snmpwalk</div><a href="B9781597496278100030.xhtml#s0215">124–125</a></div></div><div class="index-item" id="idx2830"><div class="index-heading">Hydra</div><a href="B9781597496278100078.xhtml#u0270">278</a></div><div class="index-item" id="idx2831"><div class="index-heading">network devices</div><div class="index-item" id="idx2832"><div class="index-heading">case study</div><a href="B9781597496278100078.xhtml#p0995">286</a></div><div class="index-item" id="idx2833"><div class="index-heading">enumeration</div><a href="B9781597496278100078.xhtml#s0100">276</a></div><div class="index-item" id="idx2834"><div class="index-heading">exploitation</div><a href="B9781597496278100078.xhtml#p0660">277–278</a></div><div class="index-item" id="idx2835"><div class="index-heading">hands-on challenge</div><a href="B9781597496278100078.xhtml#u0405">290</a></div></div><div class="index-item" id="idx2836"><div class="index-heading">security issues</div><a href="B9781597496278100078.xhtml#p0110">261</a></div></div><div class="index-item" id="idx2837"><div class="index-heading">Simple Object Access Protocol (SOAP)</div><div class="index-item" id="idx2838"><div class="index-heading">enterprise application web services</div><a href="B9781597496278100030.xhtml#p0160">296</a></div><div class="index-item" id="idx2839"><div class="index-heading">soapUI enterprise application testing</div><a href="B9781597496278100030.xhtml#p0420">306</a> , <a href="B9781597496278100030.xhtml#p0670">308–309</a></div></div><div class="index-item" id="idx2840"><div class="index-heading">Slapper worm, web server history</div><a href="B9781597496278100066.xhtml#p0105">220–221</a></div><div class="index-item" id="idx2841"><div class="index-heading">Slax, De-ICE.net PenTest disks</div><a href="B9781597496278100017.xhtml#p0955">22</a></div><div class="index-item" id="idx2842"><div class="index-heading">Slurp (Yahoo!), for intelligence gathering</div><a href="B9781597496278100029.xhtml#p0235">34</a></div><div class="index-item" id="idx2843"><div class="index-heading">SMB, basic considerations</div><a href="B9781597496278100030.xhtml#p1235">127</a></div><div class="index-item" id="idx2844"><div class="index-heading">SMS</div><div class="see-also"><i>see</i><a href="B9781597496278100182-21.xhtml#idx3000">Systems Management Server (SMS)</a></div></div><div class="index-item" id="idx2845"><div class="index-heading">SMTP</div><div class="see-also"><i>see</i><a href="B9781597496278100182-21.xhtml#idx2817">Simple Mail Transport Protocol (SMTP)</a></div></div><div class="index-item" id="idx2846"><div class="index-heading">SNMP</div><div class="see-also"><i>see</i><a href="B9781597496278100182-21.xhtml#idx2825">Simple Network Management Protocol (SNMP)</a></div></div><div class="index-item" id="idx2847"><div class="index-heading">Snmpenum.pl</div><div class="index-item" id="idx2848"><div class="index-heading">enumeration</div><a href="B9781597496278100030.xhtml#s0220">125–126</a></div><div class="index-item" id="idx2849"><div class="index-heading">network device enumeration</div><a href="B9781597496278100078.xhtml#p0615">276</a></div><div class="index-item" id="idx2850"><div class="index-heading">sample output</div><a href="B9781597496278100030.xhtml#f0110">126f</a></div></div><div class="index-item" id="idx2851"><div class="index-heading">Snmpwalk</div><div class="index-item" id="idx2852"><div class="index-heading">enumeration</div><a href="B9781597496278100030.xhtml#s0215">124</a> , <a href="B9781597496278100030.xhtml#f0100">125f</a></div><div class="index-item" id="idx2853"><div class="index-heading">network device case study</div><a href="B9781597496278100078.xhtml#p1000">286</a></div><div class="index-item" id="idx2854"><div class="index-heading">network device enumeration</div><a href="B9781597496278100078.xhtml#p0615">276</a></div><div class="index-item" id="idx2855"><div class="index-heading">system description</div><a href="B9781597496278100030.xhtml#f0105">125f</a></div></div><div class="index-item" id="idx2856"><div class="index-heading">SOAP</div><div class="see-also"><i>see</i><a href="B9781597496278100182-21.xhtml#idx2837">Simple Object Access Protocol (SOAP)</a></div></div><div class="index-item" id="idx2857"><div class="index-heading">SoapUI</div><div class="index-item" id="idx2858"><div class="index-heading">enterprise applications</div><a href="B9781597496278100030.xhtml#p0275">299</a> , <a href="B9781597496278100030.xhtml#s0080">306–313</a></div><div class="index-item" id="idx2859"><div class="index-heading">WSDL example</div><a href="B9781597496278100030.xhtml#f0055">307</a> , <a href="B9781597496278100030.xhtml#p0440">309f</a></div><div class="index-item" id="idx2860"><div class="index-heading">WSDL import</div><a href="B9781597496278100030.xhtml#f0050">309f</a></div></div><div class="index-item" id="idx2861"><div class="index-heading">Social engineering attacks</div><div class="index-item" id="idx2862"><div class="index-heading">custom malware, basic approach</div><a href="B9781597496278100042.xhtml#s0190">170</a></div><div class="index-item" id="idx2863"><div class="index-heading">in penetration testing</div><a href="B9781597496278100042.xhtml#p0060">142</a></div></div><div class="index-item" id="idx2864"><div class="index-heading">Social-Engineer Toolkit (SET)</div><div class="index-item" id="idx2865"><div class="index-heading">case study</div><a href="B9781597496278100042.xhtml#p1385">183</a></div><div class="index-item" id="idx2866"><div class="index-heading">custom malware</div><a href="B9781597496278100042.xhtml#s0255">180–181</a></div><div class="index-item" id="idx2867"><div class="index-heading">email example</div><a href="B9781597496278100042.xhtml#f0040">155f</a></div><div class="index-item" id="idx2868"><div class="index-heading">exploit generation</div><a href="B9781597496278100042.xhtml#f0030">153f</a></div><div class="index-item" id="idx2869"><div class="index-heading">Infectious Media Generator</div><a href="B9781597496278100042.xhtml#f0120">180f</a></div><div class="index-item" id="idx2870"><div class="index-heading">main menu screenshot</div><a href="B9781597496278100042.xhtml#f0025">152f</a></div><div class="index-item" id="idx2871"><div class="index-heading">and metasploit</div><a href="B9781597496278100042.xhtml#p0410">151</a></div><div class="index-item" id="idx2872"><div class="index-heading">phishing</div><a href="B9781597496278100042.xhtml#s0085">151</a> , <a href="B9781597496278100042.xhtml#t0010">156t</a></div><div class="index-item" id="idx2873"><div class="index-heading">spear-phishing attack</div><a href="B9781597496278100042.xhtml#s0090">151–153</a></div><div class="index-item" id="idx2874"><div class="index-heading">web attacks</div><a href="B9781597496278100042.xhtml#s0095">154</a></div></div><div class="index-item" id="idx2875"><div class="index-heading">Social network attacks</div><div class="index-item" id="idx2876"><div class="index-heading">applications</div><a href="B9781597496278100042.xhtml#s0150">163</a></div><div class="index-item" id="idx2877"><div class="index-heading">basic approach</div><a href="B9781597496278100042.xhtml#s0110">156–157</a></div><div class="index-item" id="idx2878"><div class="index-heading">basic concepts</div><a href="B9781597496278100042.xhtml#s0135">161–162</a></div><div class="index-item" id="idx2879"><div class="index-heading">case study</div><a href="B9781597496278100042.xhtml#s0260">181–187</a></div><div class="index-item" id="idx2880"><div class="index-heading">core technologies</div><a href="B9781597496278100042.xhtml#s0130">161</a></div><div class="index-item" id="idx2881"><div class="index-heading">EXIF.py</div><a href="B9781597496278100042.xhtml#s0175">166</a> , <a href="B9781597496278100042.xhtml#f0085">168f</a></div><div class="index-item" id="idx2882"><div class="index-heading">Facebook API browser</div><a href="B9781597496278100042.xhtml#f0065">165f</a></div><div class="index-item" id="idx2883"><div class="index-heading">Facebook/Google Buzz API browsers</div><a href="B9781597496278100042.xhtml#s0165">164–165</a></div><div class="index-item" id="idx2884"><div class="index-heading">Facebook sample details</div><a href="B9781597496278100042.xhtml#f0070">166f</a></div><div class="index-item" id="idx2885"><div class="index-heading">Facebook sample page</div><a href="B9781597496278100042.xhtml#f0075">167f</a></div><div class="index-item" id="idx2886"><div class="index-heading">Google Maps GPS coordinate examples</div><a href="B9781597496278100042.xhtml#f0090">169f</a></div><div class="index-item" id="idx2887"><div class="index-heading">hands-on challenge</div><a href="B9781597496278100042.xhtml#u0300">187</a></div><div class="index-item" id="idx2888"><div class="index-heading">human recon</div><a href="B9781597496278100029.xhtml#s0230">70</a></div><div class="index-item" id="idx2889"><div class="index-heading">malware</div><a href="B9781597496278100042.xhtml#s0120">160</a></div><div class="index-item" id="idx2890"><div class="index-heading">overview</div><a href="B9781597496278100042.xhtml#s0105">156–168</a></div><div class="index-item" id="idx2891"><div class="index-heading">phishing</div><a href="B9781597496278100042.xhtml#s0115">157–158</a></div><div class="index-item" id="idx2892"><div class="index-heading">photographs</div><a href="B9781597496278100042.xhtml#s0140">162</a></div><div class="index-item" id="idx2893"><div class="index-heading">relationships</div><a href="B9781597496278100042.xhtml#s0125">160</a> , <a href="B9781597496278100042.xhtml#s0145">162–163</a></div><div class="index-item" id="idx2894"><div class="index-heading">social network diagram</div><a href="B9781597496278100042.xhtml#f0060">161f</a></div><div class="index-item" id="idx2895"><div class="index-heading">SocNetV</div><a href="B9781597496278100042.xhtml#s0170">165–166</a> , <a href="B9781597496278100042.xhtml#f0080">167f</a></div><div class="index-item" id="idx2896"><div class="index-heading">status updates</div><a href="B9781597496278100042.xhtml#s0155">163–164</a></div><div class="index-item" id="idx2897"><div class="index-heading">tools overview</div><a href="B9781597496278100042.xhtml#s0160">164</a></div></div><div class="index-item" id="idx2898"><div class="index-heading">Social Networking Map (2010)</div><a href="B9781597496278100042.xhtml#f0055">159f</a></div><div class="index-item" id="idx2899"><div class="index-heading">SocNetV</div><div class="index-item" id="idx2900"><div class="index-heading">sample diagram</div><a href="B9781597496278100042.xhtml#f0080">167f</a></div><div class="index-item" id="idx2901"><div class="index-heading">social network attacks</div><a href="B9781597496278100042.xhtml#s0170">165–166</a></div></div><div class="index-item" id="idx2902"><div class="index-heading">Solaris, VirtualBox</div><a href="B9781597496278100108.xhtml#p0795">395</a></div><div class="index-item" id="idx2903"><div class="index-heading">SP 800-115, penetration testing frameworks</div><a href="B9781597496278100108.xhtml#s0165">390</a></div><div class="index-item" id="idx2904"><div class="index-heading">Spamming, personal phishing</div><a href="B9781597496278100042.xhtml#p0145">144</a></div><div class="index-item" id="idx2905"><div class="index-heading">SPAN</div><div class="see-also"><i>see</i><a href="B9781597496278100182-21.xhtml#idx2967">Switched port analyzer (SPAN)</a></div></div><div class="index-item" id="idx2906"><div class="index-heading">Spear-phishing attack, SET</div><div class="index-item" id="idx2907"><div class="index-heading">exploit generation</div><a href="B9781597496278100042.xhtml#f0030">153f</a></div><div class="index-item" id="idx2908"><div class="index-heading">main menu</div><a href="B9781597496278100042.xhtml#f0025">152f</a></div><div class="index-item" id="idx2909"><div class="index-heading">overview</div><a href="B9781597496278100042.xhtml#s0090">151–153</a></div><div class="index-item" id="idx2910"><div class="index-heading">transmission options</div><a href="B9781597496278100042.xhtml#f0035">154f</a></div></div><div class="index-item" id="idx2911"><div class="index-heading">Spiders</div><div class="index-item" id="idx2912"><div class="index-heading">Google example</div><a href="B9781597496278100029.xhtml#p0420">41–42</a></div><div class="index-item" id="idx2913"><div class="index-heading">for intelligence gathering</div><a href="B9781597496278100029.xhtml#p0235">34</a></div></div><div class="index-item" id="idx2914"><div class="index-heading">Split embedded payload, custom malware</div><a href="B9781597496278100042.xhtml#p0945">175</a> , <a href="B9781597496278100042.xhtml#f0095">175f</a></div><div class="index-item" id="idx2915"><div class="index-heading">Spoofing tools, Live Hacking CD</div><a href="B9781597496278100017.xhtml#u0310">15</a></div><div class="index-item" id="idx2916"><div class="index-heading">SQL</div><div class="see-also"><i>see</i><a href="B9781597496278100182-21.xhtml#idx2953">Structured Query Language (SQL)</a></div></div><div class="index-item" id="idx2917"><div class="index-heading">SQLix</div><div class="index-item" id="idx2918"><div class="index-heading">scan screenshot</div><a href="B9781597496278100066.xhtml#f0120">245f</a></div><div class="index-item" id="idx2919"><div class="index-heading">web application testing</div><a href="B9781597496278100066.xhtml#s0135">243</a></div></div><div class="index-item" id="idx2920"><div class="index-heading">Sqlmap</div><div class="index-item" id="idx2921"><div class="index-heading">execution example</div><a href="B9781597496278100066.xhtml#f0125">246f</a></div><div class="index-item" id="idx2922"><div class="index-heading">results screenshot</div><a href="B9781597496278100066.xhtml#f0130">246f</a></div><div class="index-item" id="idx2923"><div class="index-heading">web application testing</div><a href="B9781597496278100066.xhtml#s0140">245</a></div><div class="index-item" id="idx2924"><div class="index-heading">web server testing case study</div><a href="B9781597496278100066.xhtml#p1360">254–255</a></div></div><div class="index-item" id="idx2925"><div class="index-heading">SQL Server</div><div class="see-also"><i>see</i><a href="B9781597496278100182-15.xhtml#idx1780">Microsoft SQL Server</a></div></div><div class="index-item" id="idx2926"><div class="index-heading">SSH</div><div class="see-also"><i>see</i><a href="B9781597496278100182-21.xhtml#idx2791">Secure Shell (SSH)</a></div></div><div class="index-item" id="idx2927"><div class="index-heading">SSID</div><div class="see-also"><i>see</i><a href="B9781597496278100182-21.xhtml#idx2806">Service set identifier (SSID)</a></div></div><div class="index-item" id="idx2928"><div class="index-heading">SSL</div><div class="see-also"><i>see</i><a href="B9781597496278100182-21.xhtml#idx2798">Secure Socket Layer (SSL)</a></div></div><div class="index-item" id="idx2929"><div class="index-heading">Stack-based overflows, web server exploits</div><div class="index-item" id="idx2930"><div class="index-heading">basic considerations</div><a href="B9781597496278100066.xhtml#s0055">225–228</a></div><div class="index-item" id="idx2931"><div class="index-heading">buffer push</div><a href="B9781597496278100066.xhtml#f0050">228f</a></div><div class="index-item" id="idx2932"><div class="index-heading">example</div><a href="B9781597496278100066.xhtml#f0060">229f</a></div><div class="index-item" id="idx2933"><div class="index-heading">inverted stack</div><a href="B9781597496278100066.xhtml#f0040">227f</a></div><div class="index-item" id="idx2934"><div class="index-heading">POP element removal</div><a href="B9781597496278100066.xhtml#f0030">226f</a> , <a href="B9781597496278100066.xhtml#f0035">227f</a></div><div class="index-item" id="idx2935"><div class="index-heading">PUSH C</div><a href="B9781597496278100066.xhtml#f0020">226f</a></div><div class="index-item" id="idx2936"><div class="index-heading">PUSH D</div><a href="B9781597496278100066.xhtml#f0025">226f</a></div><div class="index-item" id="idx2937"><div class="index-heading">saved EIP</div><a href="B9781597496278100066.xhtml#f0045">228f</a></div><div class="index-item" id="idx2938"><div class="index-heading">simple stack</div><a href="B9781597496278100066.xhtml#f0015">225f</a></div><div class="index-item" id="idx2939"><div class="index-heading">strcpy function</div><a href="B9781597496278100066.xhtml#f0055">229f</a></div></div><div class="index-item" id="idx2940"><div class="index-heading">Standard configuration guide, database installation</div><a href="B9781597496278100054.xhtml#p0150">193</a></div><div class="index-item" id="idx2941"><div class="index-heading">Stateful inspection firewall, basic function</div><a href="B9781597496278100078.xhtml#p0240">265</a></div><div class="index-item" id="idx2942"><div class="index-heading">Static routing, definition</div><a href="B9781597496278100078.xhtml#p0195">264</a></div><div class="index-item" id="idx2943"><div class="index-heading">Stealthy penetration test case study, scanning and enumeration</div><div class="index-item" id="idx2944"><div class="index-heading">Nmap scan results</div><a href="B9781597496278100030.xhtml#f0145">135f</a></div><div class="index-item" id="idx2945"><div class="index-heading">overview</div><a href="B9781597496278100030.xhtml#s0250">134–136</a></div><div class="index-item" id="idx2946"><div class="index-heading">targeted Nmap scan results</div><a href="B9781597496278100030.xhtml#f0150">136f</a></div></div><div class="index-item" id="idx2947"><div class="index-heading">Storage area networks (SAN), as targets</div><a href="B9781597496278100078.xhtml#p0280">266</a></div><div class="index-item" id="idx2948"><div class="index-heading">Stored procedures</div><div class="index-item" id="idx2949"><div class="index-heading">Oracle databases</div><a href="B9781597496278100054.xhtml#s0105">204</a></div><div class="index-item" id="idx2950"><div class="index-heading">SQL Server</div><a href="B9781597496278100054.xhtml#p0270">195</a> , <a href="B9781597496278100054.xhtml#s0060">196</a> , <a href="B9781597496278100054.xhtml#t0015">196t</a></div></div><div class="index-item" id="idx2951"><div class="index-heading">strcpy function, web server stack-based overflows</div><a href="B9781597496278100066.xhtml#p0475">228</a> , <a href="B9781597496278100066.xhtml#f0055">229f</a></div><div class="index-item" id="idx2952"><div class="index-heading">Stress testing, web server testing</div><a href="B9781597496278100066.xhtml#p0205">223</a></div><div class="index-item" id="idx2953"><div class="index-heading">Structured Query Language (SQL)</div><div class="see-also"><i>see also</i><a href="B9781597496278100182-06.xhtml#idx551">Database query injection attacks</a></div><div class="index-item" id="idx2954"><div class="index-heading">database definition</div><a href="B9781597496278100054.xhtml#p0100">191</a></div><div class="index-item" id="idx2955"><div class="index-heading">historical background</div><a href="B9781597496278100054.xhtml#p0110">191</a></div><div class="index-item" id="idx2956"><div class="index-heading">WAFWOOF</div><a href="B9781597496278100066.xhtml#p0750">234</a></div></div><div class="index-item" id="idx2957"><div class="index-heading">Subnets</div><div class="index-item" id="idx2958"><div class="index-heading">and IPv6</div><a href="B9781597496278100078.xhtml#p0300">266–267</a></div><div class="index-item" id="idx2959"><div class="index-heading">Nmap network device scanning</div><a href="B9781597496278100078.xhtml#p0450">272</a></div><div class="index-item" id="idx2960"><div class="index-heading">scanning and enumeration purpose</div><a href="B9781597496278100030.xhtml#p0160">96–97</a></div><div class="index-item" id="idx2961"><div class="index-heading">web server testing case study</div><a href="B9781597496278100066.xhtml#p1290">247–248</a></div></div><div class="index-item" id="idx2962"><div class="index-heading">Sun Java, browser exploitation</div><a href="B9781597496278100042.xhtml#p0340">150</a></div><div class="index-item" id="idx2963"><div class="index-heading">SunOS/Solaris machines</div><div class="index-item" id="idx2964"><div class="index-heading">Nmap OS fingerprinting</div><a href="B9781597496278100030.xhtml#p0735">115</a></div><div class="index-item" id="idx2965"><div class="index-heading">UDP scanning time</div><a href="B9781597496278100030.xhtml#p0480">107</a></div></div><div class="index-item" id="idx2966"><div class="index-heading">Supply chain management, enterprise applications</div><a href="B9781597496278100030.xhtml#p0180">296–297</a></div><div class="index-item" id="idx2967"><div class="index-heading">Switched port analyzer (SPAN), switch function</div><a href="B9781597496278100078.xhtml#p0135">262</a></div><div class="index-item" id="idx2968"><div class="index-heading">Switches</div><div class="index-item" id="idx2969"><div class="index-heading">ARP spoofing</div><a href="B9781597496278100078.xhtml#p0140">262</a> , <a href="B9781597496278100078.xhtml#f0010">263f</a></div><div class="index-item" id="idx2970"><div class="index-heading">basic function</div><a href="B9781597496278100078.xhtml#s0015">260</a> , <a href="B9781597496278100078.xhtml#p0120">261</a></div><div class="index-item" id="idx2971"><div class="index-heading">definition</div><a href="B9781597496278100078.xhtml#p0125">262</a></div><div class="index-item" id="idx2972"><div class="index-heading">enterprise applications</div><a href="B9781597496278100030.xhtml#p0180">296–297</a></div><div class="index-item" id="idx2973"><div class="index-heading">Ettercap</div><a href="B9781597496278100078.xhtml#p0970">283</a></div><div class="index-item" id="idx2974"><div class="index-heading">identification techniques</div><a href="B9781597496278100078.xhtml#p0090">261</a></div><div class="index-item" id="idx2975"><div class="index-heading">proper configuration</div><a href="B9781597496278100078.xhtml#s0020">260–267</a></div><div class="index-item" id="idx2976"><div class="index-heading">sniffing</div><a href="B9781597496278100078.xhtml#p0135">262</a></div></div><div class="index-item" id="idx2977"><div class="index-heading">SYN flood, noisy (IDS) testing case study</div><a href="B9781597496278100030.xhtml#p1710">136</a> , <a href="B9781597496278100030.xhtml#f0155">137f</a></div><div class="index-item" id="idx2978"><div class="index-heading">SYN scan</div><div class="index-item" id="idx2979"><div class="index-heading">definition</div><a href="B9781597496278100030.xhtml#p0240">99</a></div><div class="index-item" id="idx2980"><div class="index-heading">external penetration test</div><a href="B9781597496278100030.xhtml#p1345">130</a></div><div class="index-item" id="idx2981"><div class="index-heading">Nmap tool</div><div class="index-item" id="idx2982"><div class="index-heading">banner grabbing</div><a href="B9781597496278100030.xhtml#p0740">115–116</a></div><div class="index-item" id="idx2983"><div class="index-heading">OS fingerprinting</div><a href="B9781597496278100030.xhtml#p0735">115</a></div><div class="index-item" id="idx2984"><div class="index-heading">ping sweep</div><a href="B9781597496278100030.xhtml#p0410">102–103</a></div><div class="index-item" id="idx2985"><div class="index-heading">port-scanning options</div><a href="B9781597496278100030.xhtml#p0450">105</a></div><div class="index-item" id="idx2986"><div class="index-heading">TCP SYN scan</div><a href="B9781597496278100030.xhtml#f0020">106f</a></div></div><div class="index-item" id="idx2987"><div class="index-heading">noisy (IDS) testing case study</div><a href="B9781597496278100030.xhtml#p1710">136</a> , <a href="B9781597496278100030.xhtml#f0160">137f</a></div><div class="index-item" id="idx2988"><div class="index-heading">stealthy penetration test case study</div><a href="B9781597496278100030.xhtml#p1690">135</a></div><div class="index-item" id="idx2989"><div class="index-heading">three-way handshake</div><a href="B9781597496278100030.xhtml#u0150">99</a></div><div class="index-item" id="idx2990"><div class="index-heading">Unicornscan</div><a href="B9781597496278100030.xhtml#p0585">109</a></div></div><div class="index-item" id="idx2991"><div class="index-heading">SYN stealth scan</div><div class="index-item" id="idx2992"><div class="index-heading">definition</div><a href="B9781597496278100030.xhtml#p0240">99</a></div><div class="index-item" id="idx2993"><div class="index-heading">Nmap stealth scanning</div><a href="B9781597496278100030.xhtml#p0465">106</a></div></div><div class="index-item" id="idx2994"><div class="index-heading">Sysinfo, human weakness case study</div><a href="B9781597496278100042.xhtml#f0135">186f</a></div><div class="index-item" id="idx2995"><div class="index-heading">System administrator (sysadmin)</div><div class="index-item" id="idx2996"><div class="index-heading">Microsoft SQL Server, users</div><a href="B9781597496278100054.xhtml#p0185">194</a></div><div class="index-item" id="idx2997"><div class="index-heading">router validation</div><a href="B9781597496278100078.xhtml#p0100">261</a></div></div><div class="index-item" id="idx2998"><div class="index-heading">System Identifier (SID), database communication</div><a href="B9781597496278100054.xhtml#p0165">193</a></div><div class="index-item" id="idx2999"><div class="index-heading">System resources, databases</div><a href="B9781597496278100054.xhtml#s0035">193–194</a></div><div class="index-item" id="idx3000"><div class="index-heading">Systems Management Server (SMS), Bluetooth vulnerability exploitation</div><a href="B9781597496278100054.xhtml#p0095">366</a></div><div class="index-item" id="idx3001"><div class="index-heading">System-to-system integration, enterprise applications</div><a href="B9781597496278100054.xhtml#p0145">295