Metasploit, 2nd Edition
暫譯: Metasploit,第二版
Kennedy, David, Aharoni, Mati, Kearns, Devon
- 出版商: No Starch Press
- 出版日期: 2025-01-28
- 售價: $2,190
- 貴賓價: 9.5 折 $2,081
- 語言: 英文
- 頁數: 288
- 裝訂: Quality Paper - also called trade paper
- ISBN: 1718502982
- ISBN-13: 9781718502987
-
相關分類:
Metasploit
海外代購書籍(需單獨結帳)
相關主題
商品描述
The new and improved guide to penetration testing using the legendary Metasploit Framework. Metasploit: The Penetration Tester's Guide has been the definitive security assessment resource for over a decade. The Metasploit Framework makes discovering, exploiting, and sharing vulnerabilities quick and relatively painless, but using it can be challenging for newcomers. Written by renowned ethical hackers and industry experts, this fully updated second edition includes:
Starting with Framework essentials--exploits, payloads, Meterpreter, and auxiliary modules--you'll progress to advanced methodologies aligned with the Penetration Test Execution Standard (PTES). Through real-world examples and simulated penetration tests, you'll:
Whether you're a cybersecurity professional, ethical hacker, or IT administrator, this second edition of Metasploit: The Penetration Tester's Guide is your key to staying ahead in the ever-evolving threat landscape.
- Advanced Active Directory and cloud penetration testing
- Modern evasion techniques and payload encoding
- Malicious document generation for client-side exploitation
- Coverage of recently added modules and commands
Starting with Framework essentials--exploits, payloads, Meterpreter, and auxiliary modules--you'll progress to advanced methodologies aligned with the Penetration Test Execution Standard (PTES). Through real-world examples and simulated penetration tests, you'll:
- Conduct network reconnaissance and analyze vulnerabilities
- Execute wireless network and social engineering attacks
- Perform post-exploitation techniques, including privilege escalation
- Develop custom modules in Ruby and port existing exploits
- Use MSFvenom to evade detection
- Integrate with Nmap, Nessus, and the Social-Engineer Toolkit
Whether you're a cybersecurity professional, ethical hacker, or IT administrator, this second edition of Metasploit: The Penetration Tester's Guide is your key to staying ahead in the ever-evolving threat landscape.
商品描述(中文翻譯)
使用傳奇的 Metasploit Framework 的新改進滲透測試指南。
Metasploit: 滲透測試者指南 已經成為超過十年的權威安全評估資源。Metasploit Framework 使得發現、利用和分享漏洞變得快速且相對輕鬆,但對於新手來說,使用它可能會有挑戰。 本書由知名的道德駭客和行業專家撰寫,這一全面更新的第二版包括:- 進階的 Active Directory 和雲端滲透測試
- 現代的躲避技術和有效載荷編碼
- 用於客戶端利用的惡意文檔生成
- 涵蓋最近新增的模組和命令
從 Framework 的基本要素開始——利用、有效載荷、Meterpreter 和輔助模組——您將進步到與滲透測試執行標準 (PTES) 對齊的進階方法論。通過真實世界的例子和模擬滲透測試,您將:
- 進行網路偵查並分析漏洞
- 執行無線網路和社交工程攻擊
- 執行後利用技術,包括特權提升
- 在 Ruby 中開發自定義模組並移植現有的利用
- 使用 MSFvenom 來躲避檢測
- 與 Nmap、Nessus 和社交工程工具包整合
無論您是網路安全專業人員、道德駭客還是 IT 管理員,這本 Metasploit: 滲透測試者指南 的第二版都是您在不斷演變的威脅環境中保持領先的關鍵。
作者簡介
Dave Kennedy, founder of Binary Defense and TrustedSec, is a cybersecurity leader who advised on the Emmy-winning series Mr. Robot. Mati Aharoni, OffSec founder, is a veteran penetration tester who has uncovered major security flaws. Devon Kearns co-founded the Exploit Database and Kali Linux. Jim O'Gorman heads the Kali Linux project at OffSec. Daniel G. Graham is a professor of computer science at the University of Virginia and a former program manager at Microsoft.
作者簡介(中文翻譯)
戴夫·肯尼迪(Dave Kennedy),Binary Defense 和 TrustedSec 的創始人,是一位網路安全領袖,曾為獲得艾美獎的系列劇 機器人先生 提供建議。馬提·阿哈羅尼(Mati Aharoni),OffSec 的創始人,是一位資深的滲透測試員,曾揭露多個重大安全漏洞。德文·基爾恩斯(Devon Kearns)共同創立了 Exploit Database 和 Kali Linux。吉姆·奧戈曼(Jim O'Gorman)負責 OffSec 的 Kali Linux 項目。丹尼爾·G·格雷厄姆(Daniel G. Graham)是維吉尼亞大學的計算機科學教授,並曾擔任微軟的項目經理。
