Goodreads helps you keep track of books you want to read.

Start by marking “Penetration Testing: A Hands-On Introduction to Hacking” as Want to Read:

Other editions

Enlarge cover

Rate this book

Clear rating

1 of 5 stars 2 of 5 stars 3 of 5 stars 4 of 5 stars 5 of 5 stars

Open Preview

Penetration Testing: A Hands-On Introduction to Hacking

Georgia Weidman

4.19 · Rating details · 277 ratings · 21 reviews

Penetration testers simulate cyber attacks to find security weaknesses in networks, operating systems, and applications. Information security experts worldwide use penetration techniques to evaluate enterprise defenses.

In Penetration Testing, security expert, researcher, and trainer Georgia Weidman introduces you to the core skills and techniques that every pentester needs

...more

Get A Copy

Kindle Edition, 528 pages

Published May 29th 2014 by No Starch Press (first published May 22nd 2014)

More Details... Edit Details

Friend Reviews

To see what your friends thought of this book, please sign up.

Reader Q&A

To ask other readers questions about Penetration Testing, please sign up.

Be the first to ask a question about Penetration Testing

Lists with This Book

This book is not yet featured on Listopia. Add this book to your favorite list »

Community Reviews

Showing 1-30

Average rating 4.19 ·

Rating details

· 277 ratings · 21 reviews

More filters

Sort order

Start your review of Penetration Testing: A Hands-On Introduction to Hacking

Feb 05, 2016 karzee rated it it was amazing · review of another edition

To learn the different domains of security and penetration testing,this is one of the best books around.

flag 5 likes · Like · see review

Feb 20, 2020 Jovany Agathe rated it it was amazing · review of another edition

Shelves: favorites

This book was written by a security expert, researcher, and trainer Georgia Weidman. Penetration Testing: A Hands-On Introduction to Hacking teaches the fundamental skills that every penetration tester needs. You will build a virtual lab with Kali Linux and a couple of vulnerable virtual machines and you will run through multiple scenarios in this environment. Tools like Wireshark, Nmap and Burp Suite are being used in this book, amongst many others.

flag 1 like · Like · see review

May 26, 2017 Merijn rated it it was amazing · review of another edition

Absolutely fantastic!

flag 1 like · Like · see review

Sep 09, 2018 Freddie Barr-Smith rated it it was amazing · review of another edition

Very good. Perhaps the reference book i've used most during sitting the OSCP. ...more

flag 1 like · Like · see review

May 04, 2020 Seng Wee Wong rated it it was amazing · review of another edition

This review has been hidden because it contains spoilers. To view it, click here. Although the book title has the word 'introduction' in it, do not be mistaken, this is not a book for the laymen. It assumes that you have intermediate to expert level of understanding of the computer architecture. That is to say, you understand how computer works, down to the register of a CPU. Throughout the book, there are references to assembly language and how hackers manage to exploit outdated systems with low level programming.

Computer security is a dynamic topic for which it is easy to ...more

flag Like · see review

Jan 21, 2018 Toto Parks rated it it was amazing · review of another edition

This was one of our textbooks from our Red Teaming class last semester. The book uses a step-by-step approach in configuring and deploying different penetration testing tools, real-world hacking scenarios and how they are executed and explains some computer science theories (buffer overflows, hashes, TCP/IP, etc) behind the attacks. You get a much broader understanding on what you are doing as a pen tester. Not bad for an introductory book.

The author is active in the penetration testing industry ...more

flag Like · see review

Aug 01, 2018 Daniel Barenboim rated it it was amazing · review of another edition

An extremely thorough book that offers more than introductions to the topics at hand.
Georgia does a great job at sticking to the main points and not getting distracted.
She guides you along, usually step by step, in each exercise.
Her method aims at teaching you the fundamentals so that you can build upon them in the future, especially since technology is constantly changing and these hacks are evolving.
Instead of having you take the easiest route from A to B, you will sometimes find yourself goin ...more

flag Like · see review

Oct 06, 2020 Truc Pham rated it liked it · review of another edition

The author selected quite a few old softwares to demonstrate how people can exploit a vulnerable in some software. One thing I don't like about this "lab setup" is that it includes Windows XP, Windows 7 which readers may face difficulty to find the correct ISO images to install.
The exploitation is kinda one-hit exploit. It's quite obvious vulnerable and I couldn't learn much about the exploitation. Maybe it's because of my learning method. Or maybe it's because the vulnerable machines are instal ...more

flag Like · see review

May 14, 2019 Shanni rated it it was amazing · review of another edition

A *really* great introduction to penetration testing, and the author provides all the tools necessary with the book. My only complaint is that it's a bit dated, but that's not the fault of the book, there just hasn't been a book of similar quality that's been published more recently. Note that this book is not for casual reading; it is a step-by-step guide to pentesting and becoming familiar with the tools of the trade. It is a comprehensive and detailed manual that every cybersecurity student s ...more

flag Like · see review

Jul 07, 2018 F rated it really liked it · review of another edition

Shelves: penetration-testing

i will back later to read last chapter 20 (smartphone pen test framework)
meanwhile i really enjoyed reading the book had alot of explanation, most of details i knew it before since i read it on other books ,
but it deserve a reading again and refreshing

flag Like · see review

Jul 10, 2019 Yestin rated it really liked it · review of another edition

Shelves: tech, infosec, non-fiction

An excellent informational resource. While the content is a bit outdated at this point the author is still very helpful and provides the necessary resources to those who take the time to ask. A great primer for getting in to penetration testing, and the PWK training and OSCP certification.

flag Like · see review

Jun 23, 2020 Steve rated it really liked it · review of another edition

This is a great book to introduce many different concepts to people early in thier security career, or, folks just interested in pickling up a few new skills. The material in vol1 is now dated; however, none of the 1 and 0 are still 1 and 0. I look forward to vol 2 (I hope) in 2021.

flag Like · see review

Jul 28, 2020 Michal rated it really liked it · review of another edition

Very practical guide, albeit a little out of date. Recommended reading for infosec enthusiasts.

flag Like · see review

Dec 20, 2019 René rated it it was amazing · review of another edition

Excellent

flag Like · see review

Jan 16, 2021 Phil rated it really liked it · review of another edition

Good overview of the field and process.

flag Like · see review

Jul 25, 2020 Datit Nasir rated it really liked it · review of another edition

A hands-on practical step by step training book for a pentester. with this book was how I got to learn about web application pentest.

flag Like · see review

Aug 10, 2020 Isaiah Halsey rated it it was amazing · review of another edition

It is a great book that has helped me study for my security + certification

flag Like · see review

Oct 19, 2020 Sam rated it liked it · review of another edition

Georgia's book is great. It is also sadly outdated as many of the labs require websites and tools that are either no longer up or deprecated.

Can't wait for the second edition though! ...more

flag Like · see review