Black Hat Python

Python Programming for Hackers and Pentesters
by Justin Seitz

December 2014, 216 pp.
ISBN: 978-1-59327-590-7
Contents | Reviews | Updates

Get 30% off with the coupon code EARLYBIRD

Order now and get early access to the PDF ebook!
(What's that?)
(Which chapters are available now?)

“The difference between script kiddies and professionals is the difference between merely using other people's tools and writing your own.”
—Charlie Miller, from the Foreword

Python is the language of choice for hackers and security analysts for creating powerful and effective tools. Ever wonder how they do it?

A follow-up to the perennial best-seller Gray Hat Python, Justin Seitz's Black Hat Python explores the darker side of Python's capabilities—writing network sniffers, manipulating packets, infecting virtual machines, creating stealthy trojans, extending the popular web hacking tool Burp Suite, and more. You'll learn how to:

  • Create a trojan command-and-control using Github
  • Detect sandboxing and automate common malware tasks, like keylogging and screenshotting
  • Escalate Windows privileges with creative process control
  • Use offensive memory forensics tricks to retrieve password hashes and inject shellcode into a virtual machine
  • Abuse Windows COM automation to perform a man-in-the-browser attack
  • Exfiltrate data from a network most sneakily

Insider techniques and creative challenges show you how to extend the hacks, and are sure to make Black Hat Python irresistible to anyone interested in offensive security.

About the Author

Justin Seitz is a Senior Security Researcher for Immunity, Inc., where he spends his time bug hunting, reverse engineering, writing exploits, and coding Python. He is the author of Gray Hat Python, the first book to cover the use of Python for security analysis.

Table of Contents

Chapter 1: Setup
Chapter 2: Networking Basics (AVAILABLE NOW)
Chapter 3: Raw Sockets and Sniffing (AVAILABLE NOW)
Chapter 4: Owning the Network with Scapy (AVAILABLE NOW)
Chapter 5: Web Hackery (AVAILABLE NOW)
Chapter 6:
Extending Burp Proxy
Chapter 7: GitHub Command and Control
Chapter 8: Common Trojaning Tasks on Windows (AVAILABLE NOW)
Chapter 9: Fun With Internet Explorer (AVAILABLE NOW)
Chapter 10:
Windows Privilege Escalation
Chapter 11: Automating Offensive Forensics