Windows Security Internals: A Deep Dive Into Windows Authentication, Authorization, and Auditing (Paperback)
暫譯: Windows 安全內部:深入探討 Windows 認證、授權與審計
Forshaw, James
- 出版商: No Starch Press
- 出版日期: 2024-04-30
- 定價: $2,150
- 售價: 8.8 折 $1,892
- 語言: 英文
- 頁數: 608
- 裝訂: Quality Paper - also called trade paper
- ISBN: 1718501986
- ISBN-13: 9781718501980
-
相關分類:
資訊安全
立即出貨
買這商品的人也買了...
-
$1,505Learn You a Haskell for Great Good!: A Beginner's Guide (Paperback) -
$908惡意代碼分析實戰 -
Machine Trading: Deploying Computer Algorithms to Conquer the Markets (Hardcover)$2,350$2,233 -
$301神經網絡編程實戰 : Java 語言實現, 2/e (Neural Network Programming with Java, 2/e) -
$1,540Practical Binary Analysis: Build Your Own Linux Tools for Binary Instrumentation, Analysis, and Disassembly (Paperback) -
Windows APT Warfare:惡意程式前線戰術指南$600$468 -
(ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide, 9/e (Paperback)$2,860$2,717 -
Windows 內核編程$714$678 -
Go 學習手冊 (Learning Go)$580$458 -
$505Go 黑帽子 : 滲透測試編程之道 -
$1,834Quantitative Trading: How to Build Your Own Algorithmic Trading Business (Hardcover) -
$2,146Introduction to Algorithms, 4/e (Hardcover) -
玩轉 Blender:3D動畫角色創作, 3/e$1,008$958 -
AI 安全:技術與實戰$888$844 -
Unity 3D 遊戲開發, 3/e$779$740 -
從駭客的角度學攻擊 - 惡意程式碼逆向全破解$880$695 -
$3,325Pen Testing from Contract to Report -
內網安全攻防:紅隊之路$654$621 -
權限提昇技術$654$621 -
$606多因素身份驗證攻防手冊 -
紅隊實戰寶典之內網滲透測試$594$564 -
狩獵網絡罪犯 — 黑客視角的開源情報實戰$720$684 -
$668量子安全:信息保護新紀元 -
數據安全與隱私計算, 2/e$528$502 -
$2,464The Developer's Playbook for Large Language Model Security: Building Secure AI Applications (Paperback)
商品描述
Power up your Windows security skills with expert guidance, in-depth technical insights, and dozens of real-world vulnerability examples from Google Project Zero's most renowned researcher!
Learn core components of the system in greater depth than ever before, and gain hands-on experience probing advanced Microsoft security systems with the added benefit of PowerShell scripts.
Windows Security Internals is a must-have for anyone needing to understand the Windows operating system's low-level implementations, whether to discover new vulnerabilities or protect against known ones. Developers, devops, and security researchers will all find unparalleled insight into the operating system's key elements and weaknesses, surpassing even Microsoft's official documentation.
Author James Forshaw teaches through meticulously crafted PowerShell examples that can be experimented with and modified, covering everything from basic resource security analysis to advanced techniques like using network authentication. The examples will help you actively test and manipulate system behaviors, learn how Windows secures files and the registry, re-create from scratch how the system grants access to a resource, learn how Windows implements authentication both locally and over a network, and much more.
You'll also explore a wide range of topics, such as:
- Windows security architecture, including both the kernel and user-mode applications
- The Windows Security Reference Monitor (SRM), including access tokens, querying and setting a resource's security descriptor, and access checking and auditing
- Interactive Windows authentication and credential storage in the Security Account Manager (SAM) and Active Directory
- Mechanisms of network authentication protocols, including NTLM and Kerberos
In an era of sophisticated cyberattacks on Windows networks, mastering the operating system's complex security mechanisms is more crucial than ever. Whether you're defending against the latest cyber threats or delving into the intricacies of Windows security architecture, you'll find Windows Security Internals indispensable in your efforts to navigate the complexities of today's cybersecurity landscape.
商品描述(中文翻譯)
透過專家的指導、深入的技術見解,以及來自 Google Project Zero 最知名研究者的數十個真實漏洞範例,提升您的 Windows 安全技能!
深入學習系統的核心組件,獲得前所未有的實作經驗,並利用 PowerShell 腳本探測先進的 Microsoft 安全系統。
Windows Security Internals 是任何需要了解 Windows 作業系統低階實作的必備書籍,無論是為了發現新漏洞或是防範已知漏洞。開發人員、DevOps 和安全研究人員都將獲得對作業系統關鍵元素和弱點的無與倫比的見解,超越 Microsoft 的官方文件。
作者 James Forshaw 透過精心設計的 PowerShell 範例進行教學,這些範例可以進行實驗和修改,涵蓋從基本資源安全分析到使用網路身份驗證等高級技術的所有內容。這些範例將幫助您主動測試和操控系統行為,了解 Windows 如何保護檔案和登錄檔,從頭開始重建系統如何授予資源的存取權,學習 Windows 如何在本地和網路上實現身份驗證,還有更多內容。
您還將探索廣泛的主題,例如:
- Windows 安全架構,包括內核和用戶模式應用程式
- Windows 安全參考監視器 (SRM),包括存取權杖、查詢和設定資源的安全描述符,以及存取檢查和審計
- 互動式 Windows 身份驗證和在安全帳戶管理器 (SAM) 和 Active Directory 中的憑證儲存
- 網路身份驗證協議的機制,包括 NTLM 和 Kerberos
在對 Windows 網路進行複雜網路攻擊的時代,掌握作業系統的複雜安全機制比以往任何時候都更為重要。無論您是在防禦最新的網路威脅,還是深入研究 Windows 安全架構的細節,您都會發現 Windows Security Internals 在您應對當今網路安全環境的複雜性方面是不可或缺的。
作者簡介
James Forshaw is a renowned computer security expert on Google's Project Zero team. In his more than 20 years of experience analyzing and exploiting security issues in Microsoft Windows and other products, he has discovered hundreds of publicly disclosed vulnerabilities in Microsoft platforms. Others frequently cite his research, which he presents in blogs, on the world stage, or through novel tooling, and he has inspired numerous researchers in the industry. When not breaking the security of other products, James works as a defender, advising teams on their security design and improving the Chromium Windows sandbox to secure billions of users worldwide. He's also the author of Attacking Network Protocols (No Starch Press)
作者簡介(中文翻譯)
詹姆斯·福肖(James Forshaw) 是谷歌 Project Zero 團隊的知名電腦安全專家。在他超過 20 年的經驗中,分析和利用 Microsoft Windows 及其他產品的安全問題,他發現了數百個公開披露的 Microsoft 平台漏洞。他的研究經常被他人引用,並且他在部落格、國際舞台或透過新穎的工具中展示這些研究,激勵了業界眾多研究人員。在不攻破其他產品的安全性時,詹姆斯作為防禦者,為團隊提供安全設計建議,並改善 Chromium Windows 沙盒,以保護全球數十億用戶的安全。他也是《攻擊網路協議》(Attacking Network Protocols,No Starch Press)的作者。
