Mastering Metasploit, Fourth Edition
暫譯: 精通 Metasploit(第四版)

Nipun Jaswal

Mastering Metasploit, Fourth Edition
  • 出版商: Packt Publishing
  • 出版日期: 2020-06-12
  • 售價: $1,530
  • 貴賓價: 9.5$1,454
  • 語言: 英文
  • 頁數: 502
  • 裝訂: Paperback
  • ISBN: 1838980075
  • ISBN-13: 9781838980078
  • 相關分類: Metasploit

    • 立即出貨 (庫存=1)

買這商品的人也買了...

商品描述

Discover the next level of network defense and penetration testing with the Metasploit 5.0 framework

Key Features

  • Make your network robust and resilient with this updated edition covering the latest pentesting techniques
  • Explore a variety of entry points to compromise a system while remaining undetected
  • Enhance your ethical hacking skills by performing penetration tests in highly secure environments

Book Description

Updated for the latest version of Metasploit, this book will prepare you to face everyday cyberattacks by simulating real-world scenarios. Complete with step-by-step explanations of essential concepts and practical examples, Mastering Metasploit will help you gain insights into programming Metasploit modules and carrying out exploitation, as well as building and porting various kinds of exploits in Metasploit.

Giving you the ability to perform tests on different services, including databases, IoT, and mobile, this Metasploit book will help you get to grips with real-world, sophisticated scenarios where performing penetration tests is a challenge. You'll then learn a variety of methods and techniques to evade security controls deployed at a target's endpoint. As you advance, you'll script automated attacks using CORTANA and Armitage to aid penetration testing by developing virtual bots and discover how you can add custom functionalities in Armitage. Following real-world case studies, this book will take you on a journey through client-side attacks using Metasploit and various scripts built on the Metasploit 5.0 framework.

By the end of the book, you'll have developed the skills you need to work confidently with efficient exploitation techniques

What you will learn

  • Develop advanced and sophisticated auxiliary, exploitation, and post-exploitation modules
  • Learn to script automated attacks using CORTANA
  • Test services such as databases, SCADA, VoIP, and mobile devices
  • Attack the client side with highly advanced pentesting techniques
  • Bypass modern protection mechanisms, such as antivirus, IDS, and firewalls
  • Import public exploits to the Metasploit Framework
  • Leverage C and Python programming to effectively evade endpoint protection

Who this book is for

If you are a professional penetration tester, security engineer, or law enforcement analyst with basic knowledge of Metasploit, this book will help you to master the Metasploit framework and guide you in developing your exploit and module development skills. Researchers looking to add their custom functionalities to Metasploit will find this book useful. As Mastering Metasploit covers Ruby programming and attack scripting using Cortana, practical knowledge of Ruby and Cortana is required.

商品描述(中文翻譯)

**探索 Metasploit 5.0 框架的下一層網路防禦與滲透測試**

**主要特點**

- 透過這本更新版的書籍,學習最新的滲透測試技術,讓您的網路更加堅固與韌性。
- 探索多種進入點以在不被偵測的情況下攻陷系統。
- 透過在高度安全的環境中進行滲透測試,提升您的道德駭客技能。

**書籍描述**

這本書針對最新版本的 Metasploit 進行更新,將幫助您通過模擬現實世界的情境來應對日常的網路攻擊。書中包含了對基本概念的逐步解釋和實用範例,《Mastering Metasploit》將幫助您深入了解如何編程 Metasploit 模組、執行利用攻擊,以及在 Metasploit 中構建和移植各種利用工具。

這本 Metasploit 書籍使您能夠對不同的服務進行測試,包括資料庫、物聯網 (IoT) 和行動設備,幫助您掌握在現實世界中進行滲透測試的複雜情境。您將學習多種方法和技術,以避開目標端點部署的安全控制。隨著進展,您將使用 CORTANA 和 Armitage 編寫自動化攻擊腳本,通過開發虛擬機器人來輔助滲透測試,並了解如何在 Armitage 中添加自定義功能。透過現實案例研究,本書將帶您探索使用 Metasploit 及基於 Metasploit 5.0 框架的各種腳本進行的客戶端攻擊。

在書籍結束時,您將具備自信使用高效利用技術所需的技能。

**您將學到的內容**

- 開發高級且複雜的輔助、利用和後利用模組。
- 學習使用 CORTANA 編寫自動化攻擊腳本。
- 測試資料庫、SCADA、VoIP 和行動設備等服務。
- 使用高度先進的滲透測試技術攻擊客戶端。
- 繞過現代保護機制,如防毒軟體、入侵偵測系統 (IDS) 和防火牆。
- 將公共利用工具匯入 Metasploit 框架。
- 利用 C 和 Python 編程有效避開端點保護。

**本書適合誰**

如果您是一位專業的滲透測試人員、安全工程師或具備基本 Metasploit 知識的執法分析師,這本書將幫助您掌握 Metasploit 框架,並指導您發展利用和模組開發技能。希望為 Metasploit 添加自定義功能的研究人員也會發現這本書非常有用。由於《Mastering Metasploit》涵蓋了 Ruby 編程和使用 Cortana 進行攻擊腳本編寫,因此需要具備 Ruby 和 Cortana 的實用知識。

作者簡介

Nipun Jaswal is an international cybersecurity author and an award-winning IT security researcher with more than a decade of experience in penetration testing, Red Team assessments, vulnerability research, RF, and wireless hacking. He is presently the Director of Cybersecurity Practices at BDO India. Nipun has trained and worked with multiple law enforcement agencies on vulnerability research and exploit development. He has also authored numerous articles and exploits that can be found on popular security databases, such as PacketStorm and exploit-db.

作者簡介(中文翻譯)

Nipun Jaswal 是一位國際網路安全作家及獲獎的 IT 安全研究員,擁有超過十年的滲透測試、紅隊評估、漏洞研究、無線電頻率 (RF) 和無線駭客技術的經驗。他目前擔任 BDO India 的網路安全實務總監。Nipun 曾與多個執法機構合作進行漏洞研究和利用開發的訓練與工作。他還撰寫了多篇文章和利用程式,這些內容可以在知名的安全資料庫中找到,例如 PacketStorm 和 exploit-db。

目錄大綱

  1. Approaching a Penetration Test Using Metasploit
  2. Reinventing Metasploit
  3. The Exploit Formulation Process
  4. Porting Exploits
  5. Testing Services with Metasploit
  6. Virtual Test Grounds and Staging
  7. Client-Side Exploitation
  8. Metasploit Extended
  9. Evasion with Metasploit
  10. Metasploit for Secret Agents
  11. Visualizing Metasploit
  12. Tips and Tricks

目錄大綱(中文翻譯)


  1. Approaching a Penetration Test Using Metasploit

  2. Reinventing Metasploit

  3. The Exploit Formulation Process

  4. Porting Exploits

  5. Testing Services with Metasploit

  6. Virtual Test Grounds and Staging

  7. Client-Side Exploitation

  8. Metasploit Extended

  9. Evasion with Metasploit

  10. Metasploit for Secret Agents

  11. Visualizing Metasploit

  12. Tips and Tricks

類似商品

最後瀏覽商品 (19)