買這商品的人也買了...
-
C++ Primer, 4/e (中文版)$990$891 -
Hacking: The Art of Exploitation, 2/e (Paperback)$1,860$1,767 -
Linux Device Driver Programming 驅動程式設計$690$587 -
JavaScript 大全, 6/e (JavaScript: The Definitive Guide: Activate Your Web Pages, 6/e)$1,200$948 -
無瑕的程式碼-敏捷軟體開發技巧守則 (Clean Code: A Handbook of Agile Software Craftsmanship)$580$452 -
$352Linux 系統移植(第2版) -
$1,575Penetration Testing: A Hands-On Introduction to Hacking (Paperback) -
精通 Python|運用簡單的套件進行現代運算 (Introducing Python: Modern Computing in Simple Packages)$780$616 -
完整學會 Git, GitHub, Git Server 的24堂課$360$284 -
Python 3.5 技術手冊$520$411 -
你所不知道的 JS|非同步處理與效能 (You Don't Know JS: Async & Performance)$520$442 -
今天不學機器學習,明天就被機器取代:從 Python 入手+演算法$590$502 -
Android 程式設計入門、應用到精通, 4/e (使用Android Studio 2.X開發,涵蓋Android 7.X和Android Wear)$580$458 -
$147數學之美, 2/e -
深度學習快速入門 — 使用 TensorFlow (Getting started with TensorFlow)$360$180 -
Android 初學特訓班, 7/e (適用 Android 6.x~7.x / 全新Android Studio 2.X開發,附影音)$480$379 -
Laravel 啟動與運行 (Laravel: Up and Running: A Framework for Building Modern PHP Apps)$780$616 -
Effective C# 中文版 | 寫出良好 C# 程式的 50個具體做法, 3/e (Effective C# : 50 Specific Ways to Improve Your C#(Covers C# 6.0), 3/e)$450$356 -
Effective SQL 中文版 | 寫出良好 SQL 的 61個具體做法 (Effective SQL : 61 Specific Ways to Write Better SQL)$450$356 -
TensorFlow + Keras 深度學習人工智慧實務應用$590$460 -
CentOS 7.3 建置、管理與伺服器架設實戰$580$452 -
寫程式前就該懂的演算法 ─ 資料分析與程式設計人員必學的邏輯思考術 (Grokking Algorithms: An illustrated guide for programmers and other curious people)$390$257 -
實戰聊天機器人 Bot 開發|使用 Node.js (Building Bots with Node.js)$380$323 -
Python 技術者們 - 練功!老手帶路教你精通正宗 Python 程式 (The Quick Python Book, 3/e)$780$616 -
Linux 網路內功修煉 - 徹底了解底層原理及高性能架構$780$616
相關主題
商品描述
Build a better defense against motivated, organized, professional attacks
Advanced Penetration Testing: Hacking the World's Most Secure Networks takes hacking far beyond Kali linux and Metasploit to provide a more complex attack simulation. Featuring techniques not taught in any certification prep or covered by common defensive scanners, this book integrates social engineering, programming, and vulnerability exploits into a multidisciplinary approach for targeting and compromising high security environments. From discovering and creating attack vectors, and moving unseen through a target enterprise, to establishing command and exfiltrating data—even from organizations without a direct Internet connection—this guide contains the crucial techniques that provide a more accurate picture of your system's defense. Custom coding examples use VBA, Windows Scripting Host, C, Java, JavaScript, Flash, and more, with coverage of standard library applications and the use of scanning tools to bypass common defensive measures.
Typical penetration testing consists of low-level hackers attacking a system with a list of known vulnerabilities, and defenders preventing those hacks using an equally well-known list of defensive scans. The professional hackers and nation states on the forefront of today's threats operate at a much more complex level—and this book shows you how to defend your high security network.
- Use targeted social engineering pretexts to create the initial compromise
- Leave a command and control structure in place for long-term access
- Escalate privilege and breach networks, operating systems, and trust structures
- Infiltrate further using harvested credentials while expanding control
Today's threats are organized, professionally-run, and very much for-profit. Financial institutions, health care organizations, law enforcement, government agencies, and other high-value targets need to harden their IT infrastructure and human capital against targeted advanced attacks from motivated professionals. Advanced Penetration Testing goes beyond Kali linux and Metasploit and to provide you advanced pen testing for high security networks.
商品描述(中文翻譯)
建立更好的防禦以對抗有動機、組織化的專業攻擊
《進階滲透測試:駭客攻擊世界上最安全的網絡》將駭客技術推向超越 Kali Linux 和 Metasploit 的境界,提供更複雜的攻擊模擬。本書介紹的技術並未在任何認證準備課程中教授,也不會被常見的防禦掃描器涵蓋,將社會工程學、程式設計和漏洞利用整合成一種多學科的方法,針對高安全性環境進行攻擊和滲透。從發現和創建攻擊向量、在目標企業中隱形移動,到建立指揮和竊取數據——即使是來自沒有直接互聯網連接的組織——本指南包含了提供更準確系統防禦狀況的關鍵技術。自訂的程式碼範例使用 VBA、Windows Scripting Host、C、Java、JavaScript、Flash 等,並涵蓋標準庫應用程式及使用掃描工具來繞過常見的防禦措施。
典型的滲透測試由低級駭客使用已知漏洞列表攻擊系統,而防禦者則使用同樣知名的防禦掃描列表來防止這些攻擊。當今威脅的專業駭客和國家級攻擊者在更複雜的層面上運作——本書將教你如何保護你的高安全性網絡。
- 使用針對性的社會工程學前提來創造初步的妥協
- 保留指揮和控制結構以便長期訪問
- 升級權限並突破網絡、操作系統和信任結構
- 使用收集到的憑證進一步滲透,同時擴大控制範圍
當今的威脅是組織化、專業運營且非常以盈利為目的。金融機構、醫療保健組織、執法機構、政府機構及其他高價值目標需要加強其 IT 基礎設施和人力資本,以抵禦來自有動機專業人士的針對性高級攻擊。《進階滲透測試》超越了 Kali Linux 和 Metasploit,為高安全性網絡提供進階的滲透測試。
