Coding for Penetration Testers: Building Better Tools (Paperback) (滲透測試者的程式設計:打造更好的工具)

Jason Andress, Ryan Linn

買這商品的人也買了...

相關主題

商品描述

Tools used for penetration testing are often purchased or downloaded from the Internet. Each tool is based on a programming language such as Perl, Python, or Ruby. If a penetration tester wants to extend, augment, or change the functionality of a tool to perform a test differently than the default configuration, the tester must know the basics of coding for the related programming language. Coding for Penetration Testers provides the reader with an understanding of the scripting languages that are commonly used when developing tools for penetration testing. It also guides the reader through specific examples of custom tool development and the situations where such tools might be used. While developing a better understanding of each language, the reader is guided through real-world scenarios and tool development that can be incorporated into a tester's toolkit.


  • Discusses the use of various scripting languages in penetration testing

  • Presents step-by-step instructions on how to build customized penetration testing tools using Perl, Ruby, Python, and other languages

  • Provides a primer on scripting including, but not limited to, Web scripting, scanner scripting, and exploitation scripting

商品描述(中文翻譯)

進行滲透測試時常使用的工具通常是從網路上購買或下載的。每個工具都是基於像Perl、Python或Ruby這樣的程式語言開發的。如果一個滲透測試人員想要擴展、增強或改變工具的功能,以便以不同於預設配置的方式進行測試,則測試人員必須瞭解相關程式語言的基礎編碼知識。《滲透測試人員的編碼》為讀者提供了對於滲透測試工具開發時常用的腳本語言的理解。它還通過具體的自定義工具開發示例和可能使用這些工具的情境來指導讀者。在深入瞭解每種語言的同時,讀者將通過實際案例和工具開發的指導,將其納入測試人員的工具包中。

本書討論了在滲透測試中使用各種腳本語言的用途,並提供了使用Perl、Ruby、Python和其他語言建立自定義滲透測試工具的逐步指示。它還提供了有關腳本編碼的入門知識,包括但不限於Web腳本、掃描腳本和利用腳本。