Penetration Testing Fundamentals: A Hands-On Guide to Reliable Security Audits (Pearson IT Cybersecurity Curriculum (ITCC))
暫譯: 滲透測試基礎:可靠安全審計的實作指南 (Pearson IT 網路安全課程 (ITCC))
William (Chuck) Easttom II
- 出版商: Pearson IT Certifica
- 出版日期: 2018-03-08
- 定價: $2,760
- 售價: 9.0 折 $2,484
- 語言: 英文
- 頁數: 448
- 裝訂: Paperback
- ISBN: 0789759373
- ISBN-13: 9780789759375
-
相關分類:
Penetration-test、資訊安全
-
相關翻譯:
滲透測試基礎:可靠性安全審計實踐指南 (簡中版)
立即出貨 (庫存 < 3)
買這商品的人也買了...
商品描述
The perfect introduction to pen testing for all IT professionals and students
· Clearly explains key concepts, terminology, challenges, tools, and skills
· Covers the latest penetration testing standards from NSA, PCI, and NIST
Welcome to today’s most useful and practical introduction to penetration testing. Chuck Easttom brings together up-to-the-minute coverage of all the concepts, terminology, challenges, and skills you’ll need to be effective.
Drawing on decades of experience in cybersecurity and related IT fields, Easttom integrates theory and practice, covering the entire penetration testing life cycle from planning to reporting.
You’ll gain practical experience through a start-to-finish sample project relying on free open source tools. Throughout, quizzes, projects, and review sections deepen your understanding and help you apply what you’ve learned.
Including essential pen testing standards from NSA, PCI, and NIST, Penetration Testing Fundamentals will help you protect your assets–and expand your career options.
LEARN HOW TO
· Understand what pen testing is and how it’s used
· Meet modern standards for comprehensive and effective testing
· Review cryptography essentials every pen tester must know
· Perform reconnaissance with Nmap, Google searches, and ShodanHq
· Use malware as part of your pen testing toolkit
· Test for vulnerabilities in Windows shares, scripts, WMI, and the Registry
· Pen test websites and web communication
· Recognize SQL injection and cross-site scripting attacks
· Scan for vulnerabilities with OWASP ZAP, Vega, Nessus, and MBSA
· Identify Linux vulnerabilities and password cracks
· Use Kali Linux for advanced pen testing
· Apply general hacking technique ssuch as fake Wi-Fi hotspots and social engineering
· Systematically test your environment with Metasploit
· Write or customize sophisticated Metasploit exploits
商品描述(中文翻譯)
完美的滲透測試入門書,適合所有IT專業人士和學生
・清楚解釋關鍵概念、術語、挑戰、工具和技能
・涵蓋NSA、PCI和NIST的最新滲透測試標準
歡迎來到當今最實用的滲透測試入門書。Chuck Easttom整合了所有您需要的概念、術語、挑戰和技能的最新資訊,幫助您有效地進行滲透測試。
Easttom憑藉數十年的網路安全及相關IT領域經驗,將理論與實踐相結合,涵蓋從規劃到報告的整個滲透測試生命週期。
您將通過一個從頭到尾的範例專案獲得實踐經驗,該專案依賴於免費的開源工具。在整個過程中,測驗、專案和回顧部分將加深您的理解並幫助您應用所學知識。
《滲透測試基礎》包含了NSA、PCI和NIST的基本滲透測試標準,將幫助您保護資產並擴展職業選擇。
學習如何
・了解什麼是滲透測試及其用途
・符合現代全面且有效的測試標準
・回顧每位滲透測試者必須了解的密碼學基本知識
・使用Nmap、Google搜尋和ShodanHq進行偵查
・將惡意軟體作為滲透測試工具包的一部分
・測試Windows共享、腳本、WMI和註冊表中的漏洞
・對網站和網路通信進行滲透測試
・識別SQL注入和跨站腳本攻擊
・使用OWASP ZAP、Vega、Nessus和MBSA掃描漏洞
・識別Linux漏洞和密碼破解
・使用Kali Linux進行高級滲透測試
・應用一般駭客技術,如假Wi-Fi熱點和社會工程
・使用Metasploit系統性地測試您的環境
・編寫或自訂複雜的Metasploit漏洞利用程式
