Privilege Escalation Techniques: Learn the art of exploiting Windows and Linux systems
暫譯: 特權提升技術:學習利用 Windows 和 Linux 系統的藝術
Ahmed, Alexis
- 出版商: Packt Publishing
- 出版日期: 2021-11-25
- 售價: $1,925
- 貴賓價: 9.5 折 $1,829
- 語言: 英文
- 頁數: 340
- 裝訂: Quality Paper - also called trade paper
- ISBN: 1801078874
- ISBN-13: 9781801078870
-
相關分類:
資訊安全、Linux、JVM 語言
立即出貨 (庫存=1)
買這商品的人也買了...
-
Mastering Active Directory, 3/e (Paperback)$2,270$2,157
商品描述
Enumerate and exploit Linux or Windows systems and escalate your privileges to the highest level
Key Features:
- Discover a range of techniques to escalate privileges on Windows and Linux systems
- Understand the key differences between Windows and Linux privilege escalation
- Explore unique exploitation challenges in each chapter provided in the form of pre-built VMs
Book Description:
Privilege escalation is a crucial step in the exploitation life cycle of a penetration tester. It helps penetration testers to set up persistence and facilitates lateral movement. This book is one of a kind, covering a range of privilege escalation techniques and tools for both Windows and Linux systems.
The book uses virtual environments that you can download to test and run tools and techniques. Each chapter will feature an exploitation challenge in the form of pre-built virtual machines (VMs). As you progress, you will learn how to enumerate and exploit a target Linux or Windows system. This privilege escalation book then demonstrates how you can escalate your privileges to the highest level.
By the end of this book, you will have gained the skills you need to be able to perform local kernel exploits, escalate privileges through vulnerabilities in services, maintain persistence, and enumerate information from the target such as passwords and password hashes.
What You Will Learn:
- Understand the privilege escalation process and set up a pentesting lab
- Gain an initial foothold on the system
- Perform local enumeration on target systems
- Exploit kernel vulnerabilities on Windows and Linux systems
- Perform privilege escalation through password looting and finding stored credentials
- Get to grips with performing impersonation attacks
- Exploit Windows services such as the secondary logon handle service to escalate Windows privileges
- Escalate Linux privileges by exploiting scheduled tasks and SUID binaries
Who this book is for:
This Windows and Linux privilege escalation book is for intermediate-level cybersecurity students and pentesters who are interested in learning how to perform various privilege escalation techniques on Windows and Linux systems, which includes exploiting bugs, design flaws, and more. An intermediate-level understanding of Windows and Linux systems along with fundamental cybersecurity knowledge is expected.
商品描述(中文翻譯)
**列舉並利用 Linux 或 Windows 系統,並將您的權限提升至最高級別**
**主要特點:**
- 發現一系列在 Windows 和 Linux 系統上提升權限的技術
- 理解 Windows 和 Linux 權限提升之間的主要差異
- 探索每章提供的以預建虛擬機(VM)形式呈現的獨特利用挑戰
**書籍描述:**
權限提升是滲透測試者利用生命週期中的關鍵步驟。它幫助滲透測試者設置持久性並促進橫向移動。本書獨一無二,涵蓋了 Windows 和 Linux 系統的一系列權限提升技術和工具。
本書使用虛擬環境,您可以下載以測試和運行工具和技術。每章將以預建虛擬機(VM)的形式呈現一個利用挑戰。隨著進展,您將學會如何列舉和利用目標 Linux 或 Windows 系統。這本權限提升書籍接著展示了如何將您的權限提升至最高級別。
到本書結束時,您將獲得執行本地內核利用、通過服務中的漏洞提升權限、維持持久性以及從目標中列舉信息(如密碼和密碼雜湊)的技能。
**您將學到的內容:**
- 理解權限提升過程並設置滲透測試實驗室
- 獲得系統的初步立足點
- 在目標系統上執行本地列舉
- 利用 Windows 和 Linux 系統中的內核漏洞
- 通過密碼竊取和查找存儲的憑證來執行權限提升
- 熟悉執行冒充攻擊
- 利用 Windows 服務(如次級登錄句柄服務)來提升 Windows 權限
- 通過利用計劃任務和 SUID 二進制文件來提升 Linux 權限
**本書適合誰:**
這本 Windows 和 Linux 權限提升書籍適合中級網絡安全學生和滲透測試者,他們有興趣學習如何在 Windows 和 Linux 系統上執行各種權限提升技術,包括利用漏洞、設計缺陷等。預期讀者對 Windows 和 Linux 系統有中級理解,並具備基本的網絡安全知識。
