Web Penetration Testing with Kali Linux, 2/e(Paperback)
暫譯: Kali Linux 網頁滲透測試,第二版(平裝本)
Juned Ahmed Ansari
- 出版商: Packt Publishing
- 出版日期: 2015-11-30
- 售價: $2,200
- 貴賓價: 9.5 折 $2,090
- 語言: 英文
- 頁數: 292
- 裝訂: Paperback
- ISBN: 1783988525
- ISBN-13: 9781783988525
-
相關分類:
資訊安全、kali-linux、Linux、Penetration-test
海外代購書籍(需單獨結帳)
買這商品的人也買了...
-
無瑕的程式碼-敏捷軟體開發技巧守則 (Clean Code: A Handbook of Agile Software Craftsmanship)$580$452 -
無瑕的程式碼 番外篇-專業程式設計師的生存之道 (The Clean Coder: A Code of Conduct for Professional Programmers)$360$281 -
$1,646Operating System Concepts, 9/e (IE-Paperback) -
ASP.NET MVC 5 網站開發美學$780$616 -
Visual C# 與 Xamarin 跨平台行動 App 開發實戰 ─ iOS/Android/Windows 一次搞定$500$395 -
精通 Python|運用簡單的套件進行現代運算 (Introducing Python: Modern Computing in Simple Packages)$780$616 -
$990SSCP (ISC)2 Systems Security Certified Practitioner Official Study Guide (Paperback) -
王者歸來-C# 完全開發範例集, 4/e$860$731 -
Python 新手使用 Django 架站的 16堂課 - 活用 Django Web Framework 快速建構動態網站$690$538 -
$1,617Deep Learning (Hardcover) -
超圖解 Arduino 互動設計入門, 3/e$680$578 -
深度學習快速入門 — 使用 TensorFlow (Getting started with TensorFlow)$360$180 -
演算法技術手冊, 2/e (Algorithms in a Nutshell: A Practical Guide, 2/e)$580$458 -
$403TensorFlow 實戰 -
$403Tensorflow:實戰Google深度學習框架 -
圖解雲端技術|基礎架構x運作原理 x API$480$379 -
系統管理員懶人包|Shell Script 自動化指令集 (Wicked Cool Shell Scripts)$480$379 -
漫畫!圖解程式設計必學基礎$300$237 -
資料視覺化|使用 Python 與 JavaScript (Data Visualization with Python and JavaScript: Scrape, Clean, Explore & Transform Your Data)$680$537 -
$403TensorFlow技術解析與實戰 -
$403深度學習原理與TensorFlow實踐 -
全能 Android 絕對正確培養聖經$720$612 -
TensorFlow + Keras 深度學習人工智慧實務應用$590$460 -
資料結構 -- 使用 Java, 4/e$520$411 -
寫程式前就該懂的演算法 ─ 資料分析與程式設計人員必學的邏輯思考術 (Grokking Algorithms: An illustrated guide for programmers and other curious people)$390$257
相關主題
商品描述
Build your defense against web attacks with Kali Sana
About This Book
- Gain a deep understanding of the flaws in web applications and exploit them in a practical manner
- Get hands-on web application hacking experience with a range of tools in Kali Sana
- Develop the practical skills required to master multiple tools in the Kali Sana toolkit
Who This Book Is For
If you are already working as a network penetration tester and want to expand your knowledge of web application hacking, then this book tailored for you. Those who are interested in learning more about the Kali Sana tools that are used to test web applications will find this book a thoroughly useful and interesting guide.
What You Will Learn
- Set up your lab with Kali Sana
- Identify the difference between hacking a web application and network hacking
- Understand the different techniques used to identify the flavor of web applications
- Expose vulnerabilities present in web servers and their applications using server-side attacks
- Use SQL and cross-site scripting (XSS) attacks
- Check for XSS flaws using the burp suite proxy
- Find out about the mitigation techniques used to negate the effects of the Injection and Blind SQL attacks
In Detail
Kali Sana is the new generation of the industry-leading BackTrack Linux penetration testing and security auditing Linux distribution. It contains several hundred tools aimed at various information security tasks such as penetration testing, forensics, and reverse engineering.
At the beginning of the book, you will be introduced to the concepts of hacking and penetration testing and will get to know about the tools used in Kali Sana that relate to web application hacking. Then, you will gain a deep understanding of SQL and command injection flaws and ways to exploit the flaws. Moving on, you will get to know more about scripting and input validation flaws, AJAX, and the security issues related to AJAX.
At the end of the book, you will use an automated technique called fuzzing to be able to identify flaws in a web application. Finally, you will understand the web application vulnerabilities and the ways in which they can be exploited using the tools in Kali Sana.
商品描述(中文翻譯)
**建立您對網路攻擊的防禦,使用 Kali Sana**
## 本書介紹
- 深入了解網路應用程式中的缺陷並以實際方式利用它們
- 使用 Kali Sana 中的一系列工具獲得實際的網路應用程式駭客經驗
- 發展掌握 Kali Sana 工具包中多種工具所需的實用技能
## 本書適合誰
如果您已經在擔任網路滲透測試員並希望擴展對網路應用程式駭客的知識,那麼這本書就是為您量身定做的。對於那些有興趣了解更多用於測試網路應用程式的 Kali Sana 工具的人來說,這本書將是一本非常有用且有趣的指南。
## 您將學到什麼
- 使用 Kali Sana 設置您的實驗室
- 確定駭客攻擊網路應用程式與網路駭客攻擊之間的區別
- 了解用於識別網路應用程式類型的不同技術
- 使用伺服器端攻擊揭露網路伺服器及其應用程式中的漏洞
- 使用 SQL 和跨站腳本 (XSS) 攻擊
- 使用 burp suite 代理檢查 XSS 缺陷
- 了解用於消除注入和盲 SQL 攻擊影響的緩解技術
## 詳細內容
Kali Sana 是業界領先的 BackTrack Linux 滲透測試和安全審計 Linux 發行版的新一代。它包含數百種針對各種信息安全任務(如滲透測試、取證和逆向工程)的工具。
在本書的開頭,您將了解駭客和滲透測試的概念,並認識與網路應用程式駭客相關的 Kali Sana 工具。接著,您將深入了解 SQL 和命令注入缺陷及其利用方式。隨後,您將進一步了解腳本和輸入驗證缺陷、AJAX 以及與 AJAX 相關的安全問題。
在本書的最後,您將使用一種稱為模糊測試的自動化技術來識別網路應用程式中的缺陷。最後,您將了解網路應用程式的漏洞及其如何利用 Kali Sana 中的工具進行攻擊。
