Metasploit Toolkit for Penetration Testing, Exploit Development, and Vulnerability Research (Paperback)
暫譯: Metasploit 測試工具包:滲透測試、漏洞開發與漏洞研究 (平裝本)

David Maynor, Thomas Wilhelm

Metasploit Toolkit for Penetration Testing, Exploit Development, and Vulnerability Research (Paperback)
  • 出版商: Syngress Media
  • 出版日期: 2007-09-01
  • 售價: $2,490
  • 貴賓價: 9.5$2,366
  • 語言: 英文
  • 頁數: 350
  • 裝訂: Paperback
  • ISBN: 1597490741
  • ISBN-13: 9781597490740
  • 相關分類: MetasploitPenetration-test

    • 已過版

買這商品的人也買了...

商品描述

Description:

This is the first book available for the Metasploit Framework (MSF), which is the attack platform of choice for one of the fastest growing careers in IT security: Penetration Testing. The book and companion Web site will provide professional penetration testers and security researchers with a fully integrated suite of tools for discovering, running, and testing exploit code.

This book discusses how to use the Metasploit Framework (MSF) as an exploitation platform. The book begins with a detailed discussion of the three MSF interfaces: msfweb, msfconsole, and msfcli .This chapter demonstrates all of the features offered by the MSF as an exploitation platform. With a solid understanding of MSFs capabilities, the book then details techniques for dramatically reducing the amount of time required for developing functional exploits.
By working through a real-world vulnerabilities against popular closed source applications, the reader will learn how to use the tools and MSF to quickly build reliable attacks as standalone exploits. The section will also explain how to integrate an exploit directly into the Metasploit Framework by providing a line-by-line analysis of an integrated exploit module. Details as to how the Metasploit engine drives the behind-the-scenes exploitation process will be covered, and along the way the reader will come to understand the advantages of exploitation frameworks. The final section of the book examines the Meterpreter payload system and teaches readers to develop completely new extensions that will integrate fluidly with the Metasploit Framework.

A November 2004 survey conducted by CSO Magazine stated that 42% of chief security officers considered penetration testing to be a security priority for their organizations

The Metasploit Framework is the most popular open source exploit platform, and there are no competing books

The books companion Web site offers all of the working code and exploits contained within the book

商品描述(中文翻譯)

**描述:**
這是第一本針對 Metasploit Framework (MSF) 的書籍,MSF 是 IT 安全領域中增長最快的職業之一:滲透測試的首選攻擊平台。這本書及其伴隨的網站將為專業的滲透測試人員和安全研究人員提供一套完整的工具,幫助他們發現、執行和測試漏洞代碼。

本書討論如何使用 Metasploit Framework (MSF) 作為一個利用平台。書中首先詳細介紹了三個 MSF 介面:msfweb、msfconsole 和 msfcli。本章展示了 MSF 作為利用平台所提供的所有功能。在對 MSF 的能力有了堅實的理解後,本書接著詳細說明了顯著減少開發功能性漏洞所需時間的技術。通過針對流行的封閉源應用程序的真實世界漏洞進行實作,讀者將學會如何使用這些工具和 MSF 快速構建可靠的獨立攻擊。這一部分還將解釋如何通過逐行分析一個集成的漏洞模組,將漏洞直接整合到 Metasploit Framework 中。書中將涵蓋 Metasploit 引擎如何驅動幕後的利用過程,並在此過程中,讀者將理解利用框架的優勢。本書的最後一部分探討了 Meterpreter 負載系統,並教導讀者開發全新的擴展,這些擴展將與 Metasploit Framework 無縫整合。

根據 CSO Magazine 在 2004 年 11 月進行的調查,42% 的首席安全官認為滲透測試是他們組織的安全優先事項。

Metasploit Framework 是最受歡迎的開源漏洞平台,並且沒有競爭書籍。

本書的伴隨網站提供了書中所有的工作代碼和漏洞。

類似商品

最後瀏覽商品 (3)