Network Security Assessment: Know Your Network 3/e

McNab

買這商品的人也買了...

商品描述

How secure is your network? The best way to find out is to attack it, using the same tactics attackers employ to identify and exploit weaknesses. With the third edition of this practical book, you’ll learn how to perform network-based penetration testing in a structured manner. Security expert Chris McNab demonstrates common vulnerabilities, and the steps you can take to identify them in your environment.

System complexity and attack surfaces continue to grow. This book provides a process to help you mitigate risks posed to your network. Each chapter includes a checklist summarizing attacker techniques, along with effective countermeasures you can use immediately.

Learn how to effectively test system components, including:

  • Common services such as SSH, FTP, Kerberos, SNMP, and LDAP
  • Microsoft services, including NetBIOS, SMB, RPC, and RDP
  • SMTP, POP3, and IMAP email services
  • IPsec and PPTP services that provide secure network access
  • TLS protocols and features providing transport security
  • Web server software, including Microsoft IIS, Apache, and Nginx
  • Frameworks including Rails, Django, Microsoft ASP.NET, and PHP
  • Database servers, storage protocols, and distributed key-value stores

商品描述(中文翻譯)

你的網絡有多安全?找出答案的最佳方法是對其進行攻擊,使用攻擊者用來識別和利用弱點的相同策略。在這本實用書的第三版中,安全專家Chris McNab展示了常見的漏洞,以及您可以在您的環境中識別它們的步驟。

系統的複雜性和攻擊面不斷增加。這本書提供了一個流程,幫助您減輕對您的網絡造成的風險。每一章都包括一個檢查清單,總結了攻擊者的技術,以及您可以立即使用的有效對策。

學習如何有效地測試系統組件,包括:
- SSH、FTP、Kerberos、SNMP和LDAP等常見服務
- Microsoft服務,包括NetBIOS、SMB、RPC和RDP
- SMTP、POP3和IMAP電子郵件服務
- 提供安全網絡訪問的IPsec和PPTP服務
- 提供傳輸安全的TLS協議和功能
- Web服務器軟件,包括Microsoft IIS、Apache和Nginx
- 框架,包括Rails、Django、Microsoft ASP.NET和PHP
- 數據庫服務器、存儲協議和分佈式鍵值存儲

這本書將幫助您了解如何以結構化的方式進行基於網絡的滲透測試,並提供實用的對策來保護您的網絡。