HANDS-ON WEB PENETRATION TESTING WITH METASPLOIT;THE SUBTLE ART OF USING METASPLOIT 5.0 FOR WEB APPLICATION EXPLOITATION [electronic resource]. [O'Reilly electronic resources]
Table of ContentsIntroduction to Web Application Penetration TestingMetasploit EssentialsThe Metasploit Web InterfaceUsing Metasploit for ReconnaissanceWeb Application Enumeration using MetasploitVulnerability scanning using WMAPVulnerability Assessment using Metasploit (Nessus)Pentesting CMSes -- WordPressPentesting CMSes -- JoomlaPentesting CMSes -- DrupalPenetration Testing on Technological Platforms -- JBossPenetration Testing on Technological Platforms -- Apache TomcatPenetration Testing on Technological Platforms -- JenkinsWeb Application Fuzzing -- Logical Bug HuntingWriting Penetration Testing Reports.
Summary
Metasploit is one of the best frameworks used for enumeration and exploitation of vulnerabilities. This book will not only give you a practical understanding of Metasploit but will also cover some less known modules and auxiliaries for pentesting Web Applications.