Ethical Hacking : A Hands-On Introduction to Breaking in (Paperback)
暫譯: 倫理駭客:實作入門指南
Graham, Daniel
- 出版商: No Starch Press
- 出版日期: 2021-11-02
- 售價: $1,780
- 貴賓價: 9.5 折 $1,691
- 語言: 英文
- 頁數: 376
- 裝訂: Quality Paper - also called trade paper
- ISBN: 1718501870
- ISBN-13: 9781718501874
-
相關分類:
駭客 Hack
立即出貨 (庫存 < 4)
買這商品的人也買了...
-
Arduino 官方正版 Genuino 101$1,700$1,700 -
你所不知道的 JS|ES6 與未來發展 (You Don't Know JS: ES6 & Beyond)$520$411 -
勒索病毒程式設計 : 揭秘你所不知道的勒索病毒$480$374 -
$1,960Guide to Security in SDN and NFV: Challenges, Opportunities, and Applications (Computer Communications and Networks) -
Raspberry Pi 3 Model B+ (UK製)$4,620$4,389 -
領域驅動設計:軟體核心複雜度的解決方法 (Domain-Driven Design: Tackling Complexity in the Heart of Software)$680$578 -
Real-World Bug Hunting: A Field Guide to Web Hacking$1,400$1,330 -
重構|改善既有程式的設計, 2/e (繁中平裝版)(Refactoring: Improving The Design of Existing Code, 2/e)$800$632 -
$810Metasploit 5.0 for Beginners, 2/e (Paperback) -
$301Web 安全漏洞原理及實戰 -
神之手:動畫大神 加加美高浩的繪手神技$550$495 -
零信任網路|在不受信任的網路中建構安全系統 (Zero Trust Networks)$480$379 -
$1,620Practical Iot Hacking: The Definitive Guide to Attacking the Internet of Things (Paperback) -
$1,620How Linux Works : What Every Superuser Should Know, 3/e (Paperback) -
LLVM Techniques, Tips, and Best Practices Clang and Middle-End Libraries (Paperback)$1,800$1,710 -
Networking Basics for Hackers$1,430$1,359 -
$1,620Designing Secure Software: A Guide for Developers (Paperback) -
黑帽 Python|給駭客與滲透測試者的 Python 開發指南, 2/e (Black Hat Python : Python Programming for Hackers and Pentesters, 2/e)$450$356 -
AutoML 自動化機器學習:用 AutoKeras 超輕鬆打造高效能 AI 模型 (Automated Machine Learning with AutoKeras: Deep learning made accessible for everyone with just few lines of coding)$690$545 -
$1,640Hacking APIs: Breaking Web Application Programming Interfaces (Paperback) -
OAuth 2.0 從入門到實戰:利用驗證和授權守護 API 的安全$600$510 -
駭客就在你旁邊:內網安全攻防滲透你死我活, 2/e$880$695 -
Kali Linux 高級滲透測試 (原書第4版)$654$621 -
你的網站非常危險 - Web安全攻防滲透駭客現場直播$880$695 -
內網安全攻防:紅隊之路$654$621
商品描述
A hands-on guide to hacking computer systems from the ground up, from capturing traffic to crafting sneaky, successful trojans.
A crash course in modern hacking techniques, Ethical Hacking is already being used to prepare the next generation of offensive security experts. In its many hands-on labs, you'll explore crucial skills for any aspiring penetration tester, security researcher, or malware analyst.
You'll begin with the basics: capturing a victim's network traffic with an ARP spoofing attack and then viewing it in Wireshark. From there, you'll deploy reverse shells that let you remotely run commands on a victim's computer, encrypt files by writing your own ransomware in Python, and fake emails like the ones used in phishing attacks. In advanced chapters, you'll learn how to fuzz for new vulnerabilities, craft trojans and rootkits, exploit websites with SQL injection, and escalate your privileges to extract credentials, which you'll use to traverse a private network.
You'll work with a wide range of professional penetration testing tools--and learn to write your own tools in Python--as you practice tasks like:
- Deploying the Metasploit framework's reverse shells and embedding them in innocent-seeming files
- Capturing passwords in a corporate Windows network using Mimikatz
- Scanning (almost) every device on the internet to find potential victims
- Installing Linux rootkits that modify a victim's operating system
- Performing advanced Cross-Site Scripting (XSS) attacks that execute sophisticated JavaScript payloads
Along the way, you'll gain a foundation in the relevant computing technologies. Discover how advanced fuzzers work behind the scenes, learn how internet traffic gets encrypted, explore the inner mechanisms of nation-state malware like Drovorub, and much more.
Developed with feedback from cybersecurity students, Ethical Hacking addresses contemporary issues in the field not often covered in other books and will prepare you for a career in penetration testing. Most importantly, you'll be able to think like an ethical hacker someone who can carefully analyze systems and creatively gain access to them.
商品描述(中文翻譯)
一個從基礎開始的電腦系統駭客實作指南,涵蓋從捕獲流量到製作狡猾且成功的木馬程式。
《倫理駭客》是現代駭客技術的速成課程,已經被用來培養下一代的攻擊性安全專家。在其眾多的實作實驗中,您將探索任何有志於成為滲透測試員、安全研究員或惡意程式分析師所需的關鍵技能。
您將從基礎開始:使用 ARP 欺騙攻擊捕獲受害者的網路流量,然後在 Wireshark 中查看。接著,您將部署反向 Shell,讓您能夠遠端在受害者的電腦上執行命令,透過在 Python 中編寫自己的勒索軟體來加密檔案,並偽造像釣魚攻擊中使用的電子郵件。在進階章節中,您將學習如何進行模糊測試以尋找新漏洞,製作木馬和根套件,利用 SQL 注入攻擊網站,並提升您的權限以提取憑證,這些憑證將用於穿越私人網路。
您將使用各種專業的滲透測試工具,並學習如何在 Python 中編寫自己的工具,實踐以下任務:
- 部署 Metasploit 框架的反向 Shell 並將其嵌入看似無害的檔案中
- 使用 Mimikatz 在企業 Windows 網路中捕獲密碼
- 掃描(幾乎)互聯網上的每個設備以尋找潛在受害者
- 安裝修改受害者作業系統的 Linux 根套件
- 執行進階的跨網站腳本(XSS)攻擊,執行複雜的 JavaScript 負載
在這個過程中,您將獲得相關計算技術的基礎知識。了解先進的模糊測試工具如何在幕後運作,學習互聯網流量如何被加密,探索像 Drovorub 這樣的國家級惡意程式的內部機制,還有更多。
《倫理駭客》在網路安全學生的反饋下開發,針對當前領域中其他書籍不常涵蓋的問題,並將為您準備滲透測試的職業生涯。最重要的是,您將能夠像一位倫理駭客一樣思考——一位能夠仔細分析系統並創造性地獲取訪問權限的人。
作者簡介
Dr. Daniel Graham is an Assistant professor of Computer Science at The University of Virginia in Charlottesville, Virginia. His research interests include secure embedded systems and networks. Before joining UVA, Dr. Graham was a Program Manager at Microsoft in Seattle, Washington. He publishes in IEEE journals relating to sensors and networks.
作者簡介(中文翻譯)
丹尼爾·格雷厄姆博士是維吉尼亞大學(The University of Virginia)計算機科學的助理教授,位於維吉尼亞州的夏洛茨維爾。他的研究興趣包括安全嵌入式系統和網絡。在加入維吉尼亞大學之前,格雷厄姆博士曾擔任位於華盛頓州西雅圖的微軟(Microsoft)計劃經理。他在IEEE期刊上發表有關傳感器和網絡的研究。
