The Hacker Playbook 2: Practical Guide To Penetration Testing (Paperback)

Peter Kim

買這商品的人也買了...

商品描述

Just as a professional athlete doesn’t show up without a solid game plan, ethical hackers, IT professionals, and security researchers should not be unprepared, either. The Hacker Playbook provides them their own game plans. Written by a longtime security professional and CEO of Secure Planet, LLC, this step-by-step guide to the “game” of penetration hacking features hands-on examples and helpful advice from the top of the field.

Through a series of football-style “plays,” this straightforward guide gets to the root of many of the roadblocks people may face while penetration testing—including attacking different types of networks, pivoting through security controls, privilege escalation, and evading antivirus software.

From “Pregame” research to “The Drive” and “The Lateral Pass,” the practical plays listed can be read in order or referenced as needed. Either way, the valuable advice within will put you in the mindset of a penetration tester of a Fortune 500 company, regardless of your career or level of experience.

This second version of The Hacker Playbook takes all the best "plays" from the original book and incorporates the latest attacks, tools, and lessons learned. Double the content compared to its predecessor, this guide further outlines building a lab, walks through test cases for attacks, and provides more customized code.

Whether you’re downing energy drinks while desperately looking for an exploit, or preparing for an exciting new job in IT security, this guide is an essential part of any ethical hacker’s library—so there’s no reason not to get in the game.

商品描述(中文翻譯)

正如一位職業運動員在沒有堅實的比賽計劃的情況下不會出場一樣,道德黑客、IT專業人員和安全研究人員也不應該毫無準備。《駭客攻防實戰指南》為他們提供了自己的比賽計劃。這本由一位長期從事安全工作並擔任Secure Planet, LLC首席執行官的專業人士撰寫的逐步指南,以滲透測試的“遊戲”為特色,並提供了來自該領域頂尖人士的實例和有用建議。

通過一系列像足球比賽一樣的“戰術”,這本直接了當的指南深入探討了渗透測試中可能遇到的許多障礙,包括攻擊不同類型的網絡、通過安全控制進行轉向、特權升級和逃避防病毒軟件等。

從“賽前”研究到“進攻”和“橫向傳球”,列出的實用戰術可以按順序閱讀或根據需要參考。無論您的職業或經驗水平如何,其中寶貴的建議都將讓您進入一家財富500強公司的渗透測試人員的思維模式。

這本《駭客攻防實戰指南》的第二版將原書中最好的“戰術”與最新的攻擊、工具和經驗教訓相結合。與前作相比,內容翻了一倍,這本指南進一步概述了如何搭建實驗室,介紹了攻擊的測試案例,並提供了更多定制代碼。

無論您是在拼命尋找漏洞時喝下能量飲料,還是在為IT安全的一份令人興奮的新工作做準備,這本指南都是道德黑客圖書館中不可或缺的一部分,所以沒有理由不參與這場遊戲。