How to Hack Like a Ghost: Breaching the Cloud
暫譯: 像幽靈般駭客入侵:雲端攻擊技巧
Flow, Sparc
- 出版商: No Starch Press
- 出版日期: 2021-05-03
- 售價: $1,360
- 貴賓價: 9.5 折 $1,292
- 語言: 英文
- 頁數: 264
- 裝訂: Quality Paper - also called trade paper
- ISBN: 1718501269
- ISBN-13: 9781718501263
-
相關分類:
資訊安全、駭客 Hack
立即出貨 (庫存 < 3)
買這商品的人也買了...
相關主題
商品描述
How to Hack Like a Ghost takes you deep inside the mind of a hacker as you carry out a fictionalized attack against a tech company, teaching cutting-edge hacking techniques along the way.
Go deep into the mind of a master hacker as he breaks into a hostile, cloud-based security environment. Sparc Flow invites you to shadow him every step of the way, from recon to infiltration, as you hack a shady, data-driven political consulting firm. While the target is fictional, the corporation's vulnerabilities are based on real-life weaknesses in today's advanced cybersecurity defense systems. You'll experience all the thrills, frustrations, dead-ends, and eureka moments of his mission first-hand, while picking up practical, cutting-edge techniques for penetrating cloud technologies.
There are no do-overs for hackers, so your training starts with basic OpSec procedures, using an ephemeral OS, Tor, bouncing servers, and detailed code to build an anonymous, replaceable hacking infrastructure guaranteed to avoid detection. From there, you'll examine some effective recon techniques, develop tools from scratch, and deconstruct low-level features in common systems to gain access to the target. Spark Flow's clever insights, witty reasoning, and stealth maneuvers teach you how to think on your toes and adapt his skills to your own hacking tasks.
You'll learn:
- How to set up and use an array of disposable machines that can renew in a matter of seconds to change your internet footprint
- How to do effective recon, like harvesting hidden domains and taking advantage of DevOps automation systems to trawl for credentials
- How to look inside and gain access to AWS's storage systems
- How cloud security systems like Kubernetes work, and how to hack them
- Dynamic techniques for escalating privileges
Packed with interesting tricks, ingenious tips, and links to external resources, this fast-paced, hands-on guide to penetrating modern cloud systems will help hackers of all stripes succeed on their next adventure.
商品描述(中文翻譯)
《如何像幽靈一樣駭客》帶你深入駭客的思維,執行對一家科技公司的虛構攻擊,並在過程中教授尖端的駭客技術。
深入一位大師級駭客的思維,觀察他如何突破一個敵對的雲端安全環境。Sparc Flow邀請你全程跟隨他,從偵查到滲透,駭入一家可疑的數據驅動政治顧問公司。雖然目標是虛構的,但該公司的漏洞基於當今先進網路安全防禦系統中的真實弱點。你將親身體驗他任務中的所有刺激、挫折、死胡同和靈光一閃的時刻,同時學習穿透雲端技術的實用尖端技術。
駭客沒有重來的機會,因此你的訓練從基本的操作安全(OpSec)程序開始,使用短暫的作業系統、Tor、跳躍伺服器和詳細的代碼來建立一個匿名、可替換的駭客基礎設施,以確保避免被檢測。接著,你將檢視一些有效的偵查技術,從零開始開發工具,並解構常見系統中的低層功能以獲取目標的訪問權限。Spark Flow的巧妙見解、機智推理和隱秘行動教你如何隨機應變,並將他的技能應用到自己的駭客任務中。
你將學到:
- 如何設置和使用一系列可一次性使用的機器,這些機器可以在幾秒鐘內更新,以改變你的網路足跡
- 如何進行有效的偵查,例如收集隱藏的域名,並利用DevOps自動化系統來搜尋憑證
- 如何查看並獲取AWS的儲存系統的訪問權限
- 雲端安全系統如Kubernetes的運作方式,以及如何駭入它們
- 升級權限的動態技術
這本快速且實用的指南充滿了有趣的技巧、巧妙的建議和外部資源的連結,將幫助各類駭客在他們的下一次冒險中取得成功。
作者簡介
Sparc Flow is a computer security expert specializing in ethical hacking, who has presented his research at international security conferences like Black Hat, DEF CON, Hack In The Box, and more. While his day job consists mainly of performing penetration tests against companies so they can patch vulnerabilities, his passion is writing and sharing hacking knowledge through his acclaimed Hack the Planet books.
作者簡介(中文翻譯)
Sparc Flow 是一位專精於電腦安全的專家,專注於倫理駭客,曾在國際安全會議上發表研究,如 Black Hat、DEF CON、Hack In The Box 等等。雖然他的日常工作主要是對公司進行滲透測試,以便他們能夠修補漏洞,但他的熱情在於撰寫和分享駭客知識,透過他備受推崇的 Hack the Planet 書籍。
