Ethical Hacking and Penetration Testing Guide

xxv
Acknowledgments
I am eternally indebted to the editor, Rich O’Hanley, for his encouragement and continuous sup-
port and my dear friend Prakhar Prasad for his help at various stages of this book.
I also thank Mohammed Ramadan for his help and support and Soroush Dallili for his ideas 
with file upload tricks. Many thanks to my friends Alex Infuhr and Giuseppe Trotta for their 
help with various sections of the “Web Hacking” chapter, Shahmeer Amir for his help with the 
“Wireless Hacking” chapter, and Tehseen Javed for his help with the “Linux Basics” chapter.
I also thank my mentors Prof. Asim Rizvi, David Vieira-Kurz, Ziaullah Mirza and last but not 
least, I thank the following keypersons: Mario Heiderich, Deepankar Arora, Nir Goldshlager, Britto 
Fleming Joe, Nishant Das Patnaik, Pepe Vila, Ray friedman, Armando Romeo, Tyler Borland, 
Zeeshan Haider, Nehal hussain, Rafael Souza, and Fatima Hanif.
I also thank my family members and relatives for always being supportive.

xxvii
Author
Rafay Baloch
is the founder/CEO of RHA InfoSec. He runs one of the top security blogs in 
Pakistan with more than 25,000 subscribers (http://rafayhackingarticles.net). He has partici-
pated in various bug bounty programs and has helped several major Internet corporations such 
as Google, Facebook, Twitter, Yahoo!, eBay, etc., to improve their Internet security. Rafay was 
successful in finding a remote code execution vulnerability along with several other high-risk 
vulnerabilities inside PayPal, for which he was awarded a huge sum of money as well as an offer 
to work for PayPal. His major areas of research interest are in network security, bypassing modern 
security defenses such as WAFs, DOM-based XSS, and other HTML 5–based attack vectors. 
Rafay holds CPTE, CPTC, CSWAE, CVA, CSS, OSCP, CCNA R & S, CCNP Route, and 
eWAPT certifications.

Yüklə 22,44 Mb.

Dostları ilə paylaş: