Black Hat Bash cover

Black Hat Bash

Bash Scripting for Hackers and Pentesters
by Dolev Farhi, Nick Aleks
Fall 2024, 360 pp.
Use coupon code PREORDER to get 25% off!

Delve into the world of offensive cybersecurity as you master Bash, a fundamental language for expert penetration testers. Unleash its potential as a portable toolset applicable across various operating systems like Linux and MacOS.

This comprehensive guide takes you from Bash scripting novice to skilled penetration tester, equipping you with the knowledge to write reusable and powerful Bash scripts. Learn the Living off the Land approach to navigate restricted networks, achieve penetration testing objectives with limited resources, and automate offensive security tasks. Loaded with hands-on exercises following the MITRE ATT&CK framework, this reference-style book ensures practical learning for any engagement. Equip yourself to conquer complex security challenges and become a proficient offensive security practitioner, all through the power of Black Hat Bash.

Author Bio 

Dolev Farhi is a security engineer and author with extensive experience leading security engineering teams in complex environments and scale in the Fintech and cyber security industries. Currently, he is the Principal Security Engineer at Wealthsimple, building defenses for one of the fastest Fintech companies in North America. Dolev has previously worked for several security firms and provided training for official Linux certification tracks. He is one of the founders of DEFCON Toronto (DC416), a popular Toronto-based hacker group. In his spare time, he enjoys researching vulnerabilities in IoT devices, participating and building CTF challenges and contributing exploits to Exploit-DB.

Nick Aleks is a leader in Toronto's cybersecurity community and a distinguished and patented security engineer, speaker, and researcher. He is currently the Senior Director of Security at Wealthsimple, leads his own security firm, ASEC.IO, and is a Senior Advisory Board member for HackStudent, George Brown, and the University of Guelph’s Master of Cybersecurity and Threat Intelligence programs. A founder of DEFCON Toronto, he specializes in offensive security and penetration testing and has over 10 years of experience hacking everything from websites, safes, locks, cars, drones, and even smart buildings.

Table of contents 

1. Bash Basics
2. Flow Control and Text Processing
3. Setting Up a Hacking Lab
4. Reconnaissance
5. Vulnerability Scanning and Fuzzing

6. Web Shells and Command Injection
7. Reverse Shells
8. Internal Information Gathering
9. Privilege Escalation
10. Persistence
11. Network Probing and Lateral Movement
12. Defense Evasion
13. Exfiltration and Counter Forensics

The chapters in red are included in this Early Access PDF.