The Browser Hacker's Handbook (Paperback)

Wade Alcorn, Christian Frichot, Michele Orru

  • 出版商: Wiley
  • 出版日期: 2014-03-24
  • 定價: $1,815
  • 售價: 9.5$1,724
  • 語言: 英文
  • 頁數: 648
  • 裝訂: Paperback
  • ISBN: 1118662091
  • ISBN-13: 9781118662090
  • 相關分類: 駭客 Hack
  • 立即出貨 (庫存 < 3)

買這商品的人也買了...

商品描述

Hackers exploit browser vulnerabilities to attack deep within networks

The Browser Hacker's Handbook gives a practical understanding of hacking the everyday web browser and using it as a beachhead to launch further attacks deep into corporate networks. Written by a team of highly experienced computer security experts, the handbook provides hands-on tutorials exploring a range of current attack methods.

The web browser has become the most popular and widely used computer "program" in the world. As the gateway to the Internet, it is part of the storefront to any business that operates online, but it is also one of the most vulnerable entry points of any system. With attacks on the rise, companies are increasingly employing browser-hardening techniques to protect the unique vulnerabilities inherent in all currently used browsers. The Browser Hacker's Handbook thoroughly covers complex security issues and explores relevant topics such as:

  • Bypassing the Same Origin Policy
  • ARP spoofing, social engineering, and phishing to access browsers
  • DNS tunneling, attacking web applications, and proxying—all from the browser
  • Exploiting the browser and its ecosystem (plugins and extensions)
  • Cross-origin attacks, including Inter-protocol Communication and Exploitation

The Browser Hacker's Handbook is written with a professional security engagement in mind. Leveraging browsers as pivot points into a target's network should form an integral component into any social engineering or red-team security assessment. This handbook provides a complete methodology to understand and structure your next browser penetration test.

商品描述(中文翻譯)

黑客利用瀏覽器漏洞深入攻擊網絡

《瀏覽器黑客手冊》提供了實用的方法,了解如何利用日常瀏覽器進行攻擊,並將其作為進一步攻擊企業網絡的據點。該手冊由一支經驗豐富的計算機安全專家團隊撰寫,提供了一系列實踐教程,探索了當前的攻擊方法。

網絡瀏覽器已成為全球最受歡迎和廣泛使用的計算機“程序”。作為通往互聯網的門戶,它是任何在線運營的企業的門面之一,但也是任何系統中最脆弱的入口之一。隨著攻擊的增加,企業越來越多地使用瀏覽器加固技術來保護所有目前使用的瀏覽器中固有的獨特漏洞。《瀏覽器黑客手冊》全面介紹了複雜的安全問題,並探討了相關主題,包括:

- 繞過同源策略
- 使用ARP欺騙、社交工程和釣魚來訪問瀏覽器
- 使用DNS隧道、攻擊Web應用程序和代理等方式,全都從瀏覽器中進行
- 利用瀏覽器及其生態系統(插件和擴展)
- 跨源攻擊,包括跨協議通信和利用

《瀏覽器黑客手冊》是針對專業安全工作的撰寫。將瀏覽器作為進入目標網絡的樞紐點,應成為任何社交工程或紅隊安全評估的重要組成部分。本手冊提供了一個完整的方法論,以了解和結構化您的下一個瀏覽器滲透測試。