相關主題
商品描述
Have you wondered how hackers and nation-states gain access to confidential information on some of the most protected systems and networks in the world? Where did they learn these techniques and how do they refine them to achieve their objectives? How do I get started in a career in cyber and get hired? We will discuss and provide examples of some of the nefarious techniques used by hackers and cover how attackers apply these methods in a practical manner.
The Hack Is Back is tailored for both beginners and aspiring cybersecurity professionals to learn these techniques to evaluate and find risks in computer systems and within networks. This book will benefit the offensive-minded hacker (red-teamers) as well as those who focus on defense (blue-teamers). This book provides real-world examples, hands-on exercises, and insider insights into the world of hacking, including:
- Hacking our own systems to learn security tools
- Evaluating web applications for weaknesses
- Identifying vulnerabilities and earning CVEs
- Escalating privileges on Linux, Windows, and within an Active Directory environment
- Deception by routing across the TOR network
- How to set up a realistic hacking lab
- Show how to find indicators of compromise
- Getting hired in cyber!
This book will give readers the tools they need to become effective hackers while also providing information on how to detect hackers by examining system behavior and artifacts. By following the detailed and practical steps within these chapters, readers can gain invaluable experience that will make them better attackers and defenders. The authors, who have worked in the field, competed with and coached cyber teams, acted as mentors, have a number of certifications, and have tremendous passions for the field of cyber, will demonstrate various offensive and defensive techniques throughout the book.
商品描述(中文翻譯)
你是否曾經想過,駭客和國家如何獲得世界上一些最受保護系統和網絡中的機密信息?他們從哪裡學習這些技術,並如何精煉它們以達成目標?我該如何開始我的網路安全職業並找到工作?我們將討論並提供一些駭客所使用的惡意技術的例子,並介紹攻擊者如何以實際的方式應用這些方法。
《The Hack Is Back》專為初學者和有志於成為網路安全專業人士的人士量身打造,幫助他們學習這些技術,以評估和發現計算機系統及網絡中的風險。本書將使以攻擊為導向的駭客(紅隊成員)以及專注於防禦的駭客(藍隊成員)受益。本書提供了真實世界的例子、實作練習以及對駭客世界的內部見解,包括:
- 駭入我們自己的系統以學習安全工具
- 評估網頁應用程式的弱點
- 識別漏洞並獲得 CVEs
- 在 Linux、Windows 和 Active Directory 環境中提升權限
- 通過 TOR 網絡進行欺騙
- 如何設置一個真實的駭客實驗室
- 如何找到妥協的指標
- 在網路安全領域找到工作!
本書將為讀者提供成為有效駭客所需的工具,同時提供如何通過檢查系統行為和文物來檢測駭客的信息。通過遵循這些章節中的詳細和實用步驟,讀者可以獲得寶貴的經驗,使他們成為更好的攻擊者和防禦者。作者們在該領域工作過,與網路團隊競爭和指導,擔任導師,擁有多項認證,並對網路安全領域充滿熱情,將在全書中展示各種攻擊和防禦技術。
作者簡介
Jesse Varsalone is an Associate Professor of Cybersecurity Technology and the coach for the Cyber Team at University of Maryland University Global Campus. Jesse has been teaching Cyber Security related courses for 24 years, and has been teaching for a total of 30 years, Jesse has taught at undergraduate and graduate level at a number of colleges and universities including University of Maryland Global Campus, the Community College of Baltimore County, the Computer Career Institute at Johns Hopkins, UMBC Training Center, Champlain College, and Stevenson University. He also taught as a DoD contractor for 5 years at the Defense Cyber Investigations Training Academy (DCITA) where he taught courses as a Forensics and Intrusions in a Windows Environment, Network Exploitation Techniques, and Live Network Investigations.
Jesse holds several certifications in the IT field, including A+, CISSP, CEH, Cloud+, CYSA+, Linux+, Net+, Pentest+, Security+, and Server+. Jesse has spoken at several conferences including many of the DoD Cyber Crime Conferences. He was a member of the Red Team for several years on the Mid-Atlantic College Cyber Defense Competition. He has a master's degree from the University of South Florida (Tampa, FL), and a bachelor's from George Mason University (Fairfax VA). Jesse has written and contributed to several publications, including Defense against the Black Arts: How Hackers Do What They Do and How to Protect against It by.
Jesse also wrote the entire series of labs for Security+, Ethical Hacking, Forensics, and Network Security for NDG's netlab. Jesse lives with his sons Mason and Levi, and daughter Kayla in Ellicott City Maryland in Howard County Maryland.
Christopher Haller is an accomplished cybersecurity expert with over 13 years of experience in Information Technology. Chris's background includes work with the US Navy's Cyber Defense Operations Command, Cyber Threat Intelligence, and Penetration Testing. His work has resulted in over a dozen CVEs, as well as mentorship and development of junior hackers. Chris is also the Red vs Blue Coach for the US Cyber Team, a machine creator for HackTheBox, and analysis online. Chris is certified as GIAC Security Expert #329, and also holds the CISSP, GXPN, GCPN, GPEN, GCIH, GWAPT, GICSP, GNFA, CASP+, Net+, Sec+, and more.
作者簡介(中文翻譯)
Jesse Varsalone 是馬里蘭大學全球校區的網路安全技術副教授及網路安全隊的教練。Jesse 在網路安全相關課程的教學經驗已有 24 年,總教學年限達 30 年。他曾在多所大學及學院教授本科及研究生課程,包括馬里蘭大學全球校區、巴爾的摩縣社區學院、約翰霍普金斯大學的計算機職業學院、UMBC 培訓中心、香普蘭學院及史蒂文森大學。他還曾作為國防部承包商,在國防網路調查訓練學院 (DCITA) 教授了 5 年,教授的課程包括 Windows 環境中的取證與入侵、網路利用技術及即時網路調查。
Jesse 在資訊科技領域擁有多項認證,包括 A+、CISSP、CEH、Cloud+、CYSA+、Linux+、Net+、Pentest+、Security+ 和 Server+。他曾在多個會議上發言,包括多場國防部網路犯罪會議。他曾是中大西洋地區大學網路防禦競賽的紅隊成員多年。他擁有南佛羅里達大學(坦帕,佛羅里達州)的碩士學位,以及喬治梅森大學(費爾法克斯,維吉尼亞州)的學士學位。Jesse 也撰寫並貢獻了多篇出版物,包括《防禦黑暗藝術:駭客如何做到他們所做的事以及如何防範》。
Jesse 還為 NDG 的 netlab 撰寫了 Security+、倫理駭客、取證及網路安全的整個實驗系列。Jesse 與他的兒子 Mason 和 Levi,以及女兒 Kayla 一起住在馬里蘭州霍華德縣的埃利科特市。
Christopher Haller 是一位成就卓越的網路安全專家,擁有超過 13 年的資訊科技經驗。Chris 的背景包括在美國海軍網路防禦作戰指揮部、網路威脅情報及滲透測試方面的工作。他的工作成果包括超過十個 CVE,以及對初級駭客的指導和培養。Chris 也是美國網路隊的紅隊對藍隊教練、HackTheBox 的機器創建者及線上分析師。Chris 獲得了 GIAC 安全專家 #329 的認證,並持有 CISSP、GXPN、GCPN、GPEN、GCIH、GWAPT、GICSP、GNFA、CASP+、Net+、Sec+ 等多項認證。
