Pen Testing from Contract to Report
暫譯: 滲透測試:從合約到報告
Basta, Alfred, Basta, Nadine, Anwar, Waqar
- 出版商: Wiley
- 出版日期: 2024-02-28
- 定價: $3,500
- 售價: 9.5 折 $3,325
- 語言: 英文
- 頁數: 672
- 裝訂: Hardcover - also called cloth, retail trade, or trade
- ISBN: 1394176783
- ISBN-13: 9781394176786
-
相關分類:
Penetration-test
立即出貨 (庫存=1)
買這商品的人也買了...
-
AI 安全:技術與實戰$888$844 -
Windows Security Internals: A Deep Dive Into Windows Authentication, Authorization, and Auditing (Paperback)$2,150$2,043 -
多因素身份驗證攻防手冊$768$730 -
紅隊實戰寶典之內網滲透測試$594$564 -
狩獵網絡罪犯 — 黑客視角的開源情報實戰$720$684 -
量子安全:信息保護新紀元$768$730 -
數據安全與隱私計算, 2/e$528$502 -
$2,502The Developer's Playbook for Large Language Model Security: Building Secure AI Applications
相關主題
商品描述
Protect your system or web application with this accessible guide
Penetration tests, also known as 'pen tests', are a means of assessing the security of a computer system by simulating a cyber-attack. These tests can be an essential tool in detecting exploitable vulnerabilities in a computer system or web application, averting potential user data breaches, privacy violations, losses of system function, and more. With system security an increasingly fundamental part of a connected world, it has never been more important that cyber professionals understand the pen test and its potential applications.
Pen Testing from Contract to Report offers a step-by-step overview of the subject. Built around a new concept called the Penetration Testing Life Cycle, it breaks the process into phases, guiding the reader through each phase and its potential to expose and address system vulnerabilities. The result is an essential tool in the ongoing fight against harmful system intrusions.
In Pen Testing from Contract to Report readers will also find:
- Content mapped to certification exams such as the CompTIA PenTest+
- Detailed techniques for evading intrusion detection systems, firewalls, honeypots, and more
- Accompanying software designed to enable the reader to practice the concepts outlined, as well as end-of-chapter questions and case studies
Pen Testing from Contract to Report is ideal for any cyber security professional or advanced student of cyber security.
商品描述(中文翻譯)
**合約到報告的滲透測試**
**用這本易懂的指南保護您的系統或網路應用程式**
滲透測試,也稱為「pen tests」,是一種通過模擬網路攻擊來評估計算機系統安全性的方法。這些測試可以成為檢測計算機系統或網路應用程式中可被利用的漏洞的重要工具,從而避免潛在的用戶數據洩露、隱私侵犯、系統功能損失等問題。隨著系統安全在互聯網世界中變得越來越重要,網路專業人士理解滲透測試及其潛在應用的重要性從未如此迫切。
《合約到報告的滲透測試》提供了該主題的逐步概述。這本書圍繞一個名為滲透測試生命週期的新概念,將過程分為不同階段,指導讀者了解每個階段及其揭露和解決系統漏洞的潛力。最終,這成為對抗有害系統入侵的必要工具。
在《合約到報告的滲透測試》中,讀者還將發現:
- 與 CompTIA PenTest+ 等認證考試對應的內容
- 逃避入侵檢測系統、防火牆、蜜罐等的詳細技術
- 附帶的軟體,旨在讓讀者練習所述概念,以及每章結尾的問題和案例研究
《合約到報告的滲透測試》非常適合任何網路安全專業人士或網路安全的高級學生。
作者簡介
Alfred Basta, PhD, CCP (CMMC), CISM, CPENT, LPT, OSCP, PMP, CRTO, CHPSE, CRISC, CISA, CGEIT, CASP+, CYSA+, is a professor of mathematics, cryptography, and information security as well as a professional speaker on internet security, networking, and cryptography. He is a member of many associations, including ISACA, ECE, and the Mathematical Association of America. Dr. Basta's other publications include Computer Security and Penetration Testing, Mathematics for Information Technology, Linux Operations and Administration, and Database Security. In addition, Dr. Basta is the chair of EC-Council's CPENT Scheme Committee. He has worked as a faculty member and curriculum advisor for programming and cyber security programs at numerous colleges and universities.
Nadine Basta, MSc., CEH, is a professor of computer science, cybersecurity, mathematics, and information technology. Her numerous certifications include CEH, MCSE, MSDBA, CCDP, NCSE, NCTE, and CCA. A security consultant and auditor, she combines strong "in the field" experience with her academic background. She is also the author of Computer Security and Penetration Testing, Mathematics for Information Technology, and Linux Operations and Administration. Nadine has extensive teaching and research experience in computer science and cybersecurity.
Waqar Anwar is a Cybersecurity Curriculum Specialist with over 10 years of experience in the field. He also develops and delivers training to faculty and staff on cybersecurity topics and conducts research on cybersecurity topics. Mr. Anwar is a frequent speaker at industry conferences. He is also a member of several cybersecurity organizations including SysAdmin, Audit, Network and Security SANS, CYBRARY, and Information Systems Security Association International ISSA.
作者簡介(中文翻譯)
阿爾弗雷德·巴斯塔(Alfred Basta),博士,CCP(CMMC),CISM,CPENT,LPT,OSCP,PMP,CRTO,CHPSE,CRISC,CISA,CGEIT,CASP+,CYSA+ 是數學、密碼學和資訊安全的教授,同時也是網路安全、網路技術和密碼學的專業演講者。他是多個協會的成員,包括 ISACA、ECE 和美國數學協會。巴斯塔博士的其他出版物包括《電腦安全與滲透測試》(Computer Security and Penetration Testing)、《資訊科技數學》(Mathematics for Information Technology)、《Linux 操作與管理》(Linux Operations and Administration)以及《資料庫安全》(Database Security)。此外,巴斯塔博士是 EC-Council 的 CPENT 計畫委員會主席。他曾在多所大學擔任程式設計和網路安全課程的教職員和課程顧問。
納丁·巴斯塔(Nadine Basta),碩士,CEH 是計算機科學、網路安全、數學和資訊科技的教授。她擁有多項認證,包括 CEH、MCSE、MSDBA、CCDP、NCSE、NCTE 和 CCA。作為安全顧問和審計師,她將豐富的實務經驗與學術背景相結合。她也是《電腦安全與滲透測試》(Computer Security and Penetration Testing)、《資訊科技數學》(Mathematics for Information Technology)和《Linux 操作與管理》(Linux Operations and Administration)的作者。納丁在計算機科學和網路安全領域擁有豐富的教學和研究經驗。
瓦卡爾·安瓦爾(Waqar Anwar) 是一位擁有超過 10 年經驗的網路安全課程專家。他還為教職員提供網路安全主題的培訓,並進行相關研究。安瓦爾先生經常在行業會議上發表演講。他也是多個網路安全組織的成員,包括 SysAdmin、Audit、Network and Security SANS、CYBRARY 和國際資訊系統安全協會(ISSA)。
