Everand Logo

Welcome to Everand!

  • Discover millions of ebooks, audiobooks, and so much more with a free trial

    From $11.99/month after trial. Cancel anytime.

    Learning zANTI2 for Android Pentesting
    Learning zANTI2 for Android Pentesting
    Learning zANTI2 for Android Pentesting
    Ebook300 pages1 hour

    Learning zANTI2 for Android Pentesting

    By Miroslav Vitula

    ()

    Read preview

    About this ebook

    Dive into the world of advanced network penetration tests to survey and attack wireless networks using your Android device and zANTI2

    About This Book
    • Understand the basics of wireless penetration testing and its importance
    • Learn the techniques to perform penetration testing on your wireless networks, such as scanning, detecting vulnerabilities in your victim, and then attacking
    • This simple and intriguing guide takes a step-by-step approach that will help you get to grips with network pentesting using just your Android device and zANTI2
    Who This Book Is For

    The book is intended for those who want to know more about network penetration tests and have no prior experience, as well as for those who are experienced in network systems and are curious to discover more about this topic. Since zANTI2 features an extremely intuitive and easy to control interface, it doesn't require any special skills.

    What You Will Learn
    • Understand the importance of penetration testing throughout systems
    • Take a run through zANTI2's interface and understand the requirements to the app
    • Perform advanced scanning/network mapping and discover the various types of scans used on a target
    • Discover and remotely connect to open ports on a target, thereby accessing a target's files and folders remotely
    • Detect vulnerabilities on a target, learn how to remotely exploit them, and discover ways to protect your self from these exploits
    • Understand what an MITM attack is and how it works, and apply this knowledge to perform attacks on network targets
    • Learn to hijack sessions, identify victim's passwords, replace images on websites, inject scripts, and more
    • Use this knowledge to protect yourself from all of the attacks you will study
    In Detail

    A penetration test is one of the most important methods to secure a network or any individual machine. Having knowledge of these methods can enable a user to protect himself/herself from any kinds of attacks. Penetration tests can also be used to discover flaws or loop holes in one's security system, which if not fixed, can be exploited by an unwanted entity.

    This book starts off with an introduction to what penetration testing is, and how it can be performed on Android using zANTI2. Once you are aware of the basics, we move on to teach you the different types of scans that can be performed to search for targets. You will then learn how to connect to open ports and intrude into an unsecured computer. From here you will explore vulnerabilities and their usage, including ShellShock and SSL Poodle vulnerability.

    When connected to an open network, a user is susceptible to password and session hijacking, and a number of other cyber attacks. The book therefore ends with one of the main aspects of cyber security: the Man in the Middle attack. You will get to know everything about the MITM attack, how it works, and how one can be protected against it.

    Style and approach

    The book follows a step-by-step approach with each of the parts explained in an easy-to-follow style. Most of the methods showcased can be tried out immediately on almost any network.

    LanguageEnglish
    PublisherPackt Publishing
    Release dateAug 31, 2015
    ISBN9781784396183
    Learning zANTI2 for Android Pentesting
    Author

    Miroslav Vitula

    Miroslav Vitula is a freelance graphic and motion designer and occasional Android developer with a great passion for network security. For years, he has been interested in penetration methods, exploits, and attacks done using Android devices. He explains the principles of methods used by professional network security managers and shows their usage on local networks. Some of his knowledge can be found on his blog and YouTube channel, Android Hackz, where he constantly adds new tips, tricks, and reviews about all Android-related things.

    Related to Learning zANTI2 for Android Pentesting

    Related ebooks

    Internet & Web For You

    View More
    View More

    Related podcast episodes

    Related articles

    • UNLIMITED

      “Someone Who Under Takes A Ransomware Attack Isn’t A Hacker, They’re An Attacker”

      Aug 12, 2021

      If you’ve ever attended an infosec or cybersecurity event, you will no doubt have noticed the preponderance of “Hacking is NOT a Crime” stickers. In 2018, some 500 such stickers were handed out at the DEF CON 26 event, the following year 5,000 were d

      7 min read

    • UNLIMITED

      Social Engineering

      Oct 15, 2019

      Social Engineering
      5 min read

    • UNLIMITED

      Hacker’s Manual

      Mar 2, 2021

      Hacker’s Manual
      1 min read

    • UNLIMITED

      Hack The System

      Dec 17, 2019

      If you followed our handy guide on the previous pages, then you’ll already have augmented your Kali Light installation with Nmap, a port-scanning utility par excellence and a vital part of any pen-tester’s arsenal. As mentioned on the DVD page (there

      4 min read

    • UNLIMITED

      Introducing Kali

      Mar 2, 2021

      Introducing Kali
      4 min read

    • UNLIMITED

      Hack The Planet/Parrot

      May 31, 2022

      Hack The Planet/Parrot
      2 min read

    • UNLIMITED

      Hacker’s Manual

      Nov 17, 2020

      Hacker’s Manual
      1 min read

    • UNLIMITED

      Disrupting Databases

      Apr 19, 2021

      Disrupting Databases
      3 min read

    • UNLIMITED

      Network Attacks

      Sep 21, 2020

      Though less common than malware and social engineering, network-based attacks are still a threat to every computer and mobile user, and everyone should have at least a basic understanding of what they are and how to avoid them. So this month let’s lo

      4 min read

    • UNLIMITED

      Hacker Distributions

      Nov 17, 2020

      Hacker Distributions
      1 min read

    • UNLIMITED

      Cyber Insecurity

      Nov 17, 2020

      Each year we proclaim it’s time to learn how to hack. But why? Jonni always gets angry at the subversion of the term ‘hacking’ and I can understand why. Hacking is fun, as is finding out how systems work and how to get them to do things they were nev

      1 min read

    • UNLIMITED

      Kali Linux 2020.3 64-bit

      Nov 17, 2020

      Kali Linux 2020.3 64-bit
      3 min read

    • UNLIMITED

      Use Home Assistant NodeRED devices

      May 31, 2022

      NodeRED is an open source graphical programming environment that can be used to complete a large number of tasks. Graphical programming languages tend to be more intuitive than textual programming languages and can be easier to learn. Support is buil

      5 min read

    • UNLIMITED

      Tools Arsenal

      Nov 17, 2020

      Tools Arsenal
      1 min read

    • UNLIMITED

      Who Are the Shadow Brokers?

      May 23, 2017

      Who Are the Shadow Brokers?
      6 min read

    • UNLIMITED

      Hack Your Bluetooth

      Jun 2, 2021

      Hack Your Bluetooth
      4 min read

    • UNLIMITED

      Your Best Defence Against Cyber-attacks

      Jul 21, 2021

      There is no better time than today to plan for how you’ll respond to a serious cyber-attack. Instigating a rock-solid cyber response plan requires identifying the risk to your business at a senior governance level, and understanding who is responsibl

      3 min read

    • UNLIMITED

      Modern Hacking, Ethics And Statistics

      May 31, 2022

      Agerund and an infinitive walk in to the Linux kernel. They were hacking to learn. An awful adaptation of a (drinking to forget) joke, but a reasonable opener. An incredibly useful maxim from long ago hacker lore is “don’t learn to hack, hack to lear

      5 min read

    • UNLIMITED

      Hacker’s Toolkit 2o22

      May 31, 2022

      Hacker’s Toolkit 2o22
      1 min read

    • UNLIMITED

      Data Recovery

      Mar 21, 2022

      Data Recovery
      12 min read

    • UNLIMITED

      Nakedn betrayal

      Dec 31, 2020

      Nakedn betrayal
      6 min read

    Related categories

    Reviews for Learning zANTI2 for Android Pentesting

    0 ratings

    0 ratings0 reviews

    What did you think?

    Tap to rate

    Review must be at least 10 words

      Book preview

      Learning zANTI2 for Android Pentesting - Miroslav Vitula

      Table of Contents

      Learning zANTI2 for Android Pentesting

      Credits

      About the Author

      About the Reviewers

      www.PacktPub.com

      Support files, eBooks, discount offers, and more

      Why subscribe?

      Free access for Packt account holders

      Preface

      What this book covers

      What you need for this book

      Who this book is for

      Conventions

      Reader feedback

      Customer support

      Errata

      Piracy

      Questions

      1. Introducing Android Pentesting with zANTI2

      Penetration testing

      Getting to know the dark side of Android

      zANTI2

      Mac Changer

      zTether

      RouterPWN

      Cloud reports

      The Wi-Fi monitor

      The HTTP server

      Nmap scan

      Operative actions

      Password complexity audit

      Zetasploit

      Summary

      2. Scanning for Your Victim

      Network discovery

      Open or closed?

      Scan types

      Run script

      Intense scan

      OS detection

      Device type

      Running

      OS CPE

      OS Details

      Network distance

      Uptime guess

      TCP sequence prediction

      IP ID sequence generation

      Ping scan

      Quick scan and OS detection

      Quick traceroute

      Slow comprehensive scan

      IP/ICMP scan

      Script execution

      Auth

      Broadcast

      Brute

      Citrix

      Database

      Discovery

      DNS

      Geolocation

      Protocol

      Info

      Brute-force scripts

      Broadcast scripts

      Info scripts

      Intrusive scripts

      Summary

      3. Connecting to Open Ports

      Open ports

      Connecting to open ports

      Cracking passwords

      Microsoft-DS port connection

      A remote desktop connection

      Summary

      4. Vulnerabilities

      A vulnerability

      Reverse engineering

      Shellshock

      SSL Poodle

      Zetasploit exploits

      Summary

      5. Attacking – MITM Style

      Man in the middle?

      ARP spoofing

      MITM attacks through zANTI2

      Logged requests

      ZPacketEditor

      SSL Strip

      HTTP redirection

      Replacing images

      Capture/intercept downloads

      Insert HTML

      Summary

      Index

      Learning zANTI2 for Android Pentesting

      Learning zANTI2 for Android Pentesting

      Copyright © 2015 Packt Publishing

      All rights reserved. No part of this book may be reproduced, stored in a retrieval system, or transmitted in any form or by any means, without the prior written permission of the publisher, except in the case of brief quotations embedded in critical articles or reviews.

      Every effort has been made in the preparation of this book to ensure the accuracy of the information presented. However, the information contained in this book is sold without warranty, either express or implied. Neither the author, nor Packt Publishing, and its dealers and distributors will be held liable for any damages caused or alleged to be caused directly or indirectly by this book.

      Packt Publishing has endeavored to provide trademark information about all of the companies and products mentioned in this book by the appropriate use of capitals. However, Packt Publishing cannot guarantee the accuracy of this information.

      First published: August 2015

      Production reference: 1260815

      Published by Packt Publishing Ltd.

      Livery Place

      35 Livery Street

      Birmingham B3 2PB, UK.

      ISBN 978-1-78439-504-9

      www.packtpub.com

      Credits

      Author

      Miroslav Vitula

      Reviewers

      Manish Chauhan

      Jack Miller

      Fatih Ozavci

      Vincent BetaBugish Swarte

      Commissioning Editor

      Kartikey Pandey

      Acquisition Editor

      Aaron Lazar

      Content Development Editor

      Adrian Raposo

      Technical Editors

      Tejaswita Karvir

      Edwin Moses

      Copy Editors

      Janbal Dharmaraj

      Dipti Mankame

      Jonathan Todd

      Project Coordinator

      Kinjal Bari

      Proofreader

      Safis Editing

      Indexer

      Priya Sane

      Graphics

      Sheetal Aute

      Production Coordinator

      Komal Ramchandani

      Cover Work

      Komal Ramchandani

      About the Author

      Miroslav Vitula is a freelance graphic and motion designer and occasional Android developer with a great passion for network security. For years, he has been interested in penetration methods, exploits, and attacks done using Android devices. He explains the principles of methods used by professional network security managers and shows their usage on local networks. Some of his knowledge can be found on his blog and YouTube channel, Android Hackz, where he constantly adds new tips, tricks, and reviews about all Android-related things.

      Huge thanks to Aaron Lazar and Adrian Raposo for helping and guiding me through the entire process of writing a book, and also to my book reviewers, Jack Miller and Fatih Ozavci, who have provided a professional feedback while writing the book. Thanks to the Zimperium team as well for making such a useful and great application.

      About the Reviewers

      Manish Chauhan was born in Sunder Nagar, a small town in Himachal Pradesh. Since his childhood days, he has had a great interest in technology, and he always wanted to be a developer. This was his childhood dream and he worked hard on it during his schooldays. He studied the C and Java languages neglecting his studies and so scored fewer marks in all subjects. He lost interest in the outer world and was in love with the digital world. After his matriculation, he did his polytechnic diploma in computer science, but left it and planned to complete HSC because it was hindering his childhood dream. At this point of time, he has finished +2 and is now pursuing further education from Emblem Education. He owns two websites and one android app, which are exclusively designed and developed by him. These sites and app are named The Hacker. You can find his blogs at www.ThaHacker.in.

      Jack Miller has been working on a YouTube channel called JackkTutorials since September 2011 covering programming, hacking and security, and game servers. Since 2011, he has accumulated over 4 million video views worldwide. His hacking and security tutorials have been very popular on his YouTube channel, which has led to further exploration in the subject and more videos covering topics such as Kali Linux, Burp Suite, Wireshark, SSLStrip, and zANTI.

      Jack has also worked on other books in the past with Packt Publishing, such as Kali Linux Network Scanning Cookbook, Kali Linux CTF Blueprints, and many more, and hopes to continue doing so in the future and expand his knowledge.

      Fatih Ozavci is a security researcher and a principal security consultant with Sense of Security. He is the author of Viproy VoIP Penetration Testing Kit and MBFuzzer Mobile Application MITM Fuzzertool. Fatih has discovered several previously unknown security vulnerabilities and design flaws in Unified Communications, IMS, IPTVMDM, and SAP-integrated mobile application environments for his customers. He has completed several unique penetration testing services and commercial trainings during his career of more than 15 years. He also handled project lead role for several penetration testing and security research projects in Europe and the APAC area. His current research is based on attacking mobile VoIP clients, VoIP service-level vulnerabilities, mobility security testing, hardware hacking, and MDM analysis. Fatih has presented his VoIP and mobile research at HITB Singapore 2015 , BlackHat USA 2014 , DefCon 23, 22, and 21, Cluecon 2013, and Ruxcon 2013. Also, he has provided VoIP and mobility security trainings at the Defcon 23, AusCert 2014, Kiwicon 2015, and Troopers 2015 events. Refer to his homepage: http://viproy.com/fozavci.

      Vincent BetaBugish Swarte is a Full Stack developer. He is self-employed (http://www.vinsert.nl) and a freelancer for Ridemi (http://www.ridemi.nl) and ArosaMedia.

      I am grateful to Gaia, my beautiful girlfriend, for being in my life and being patient with me working over time. I am also grateful to Alex, my dad, for bringing me into the 'magical' world of computers at an early age and Heidi, my mother, for taking great care of me in the early stages of my life.

      www.PacktPub.com

      Support files, eBooks, discount offers, and more

      For support files and downloads related to your book, please visit www.PacktPub.com.

      Did you know that Packt offers eBook versions of every book published, with PDF and ePub files available? You can upgrade to the eBook version at www.PacktPub.com and as a print book customer, you are entitled to a discount on the eBook copy. Get in touch with us at for more details.

      At www.PacktPub.com, you can also read a collection of free technical articles, sign up for a range of free newsletters and receive exclusive discounts and offers on Packt books and eBooks.

      https://www2.packtpub.com/books/subscription/packtlib

      Do you need instant solutions to your IT questions? PacktLib is Packt's online digital book library. Here, you can search, access, and read Packt's entire library of books.

      Why subscribe?

      Fully searchable across every book published by Packt

      Copy and paste, print, and bookmark content

      On demand and accessible via a web browser

      Free access for Packt account holders

      If you have an account with Packt at www.PacktPub.com, you can use this to access PacktLib today and view 9 entirely free books. Simply use your login credentials for immediate access.

      Preface

      This is a complete guidebook to zANTI2 application for Android. Learn how to exploit vulnerabilities, hijack passwords, perform advanced scanning on a network, and many more operations using your Android device.

      What this book covers

      Chapter 1, Introducing Android Pentesting with zANTI2, as the chapter name explains, introduces the basics of Android network penetration testing, shows you some examples of software, and essentially introduces the application interface and functions.

      Chapter 2, Scanning for Your Victim, focuses on network mapping

      Enjoying the preview?
      Page 1 of 1