Metasploit, 2/e (Paperback)
暫譯: Metasploit,第二版(平裝本)
Kennedy, David, Aharoni, Mati, Kearns, Devon
- 出版商: No Starch Press
- 出版日期: 2025-01-28
- 售價: $1,980
- 貴賓價: 9.5 折 $1,881
- 語言: 英文
- 頁數: 288
- 裝訂: Quality Paper - also called trade paper
- ISBN: 1718502982
- ISBN-13: 9781718502987
-
相關分類:
Metasploit
立即出貨 (庫存 < 3)
買這商品的人也買了...
-
大話設計模式$620$490 -
Identity and Data Security for Web Development: Best Practices$1,292$1,224 -
Attacking Network Protocols|王牌駭客的網路攻防手法大公開 (Attacking Network Protocols: A Hacker's Guide to Capture, Analysis, and Exploitation)$480$408 -
領域驅動設計:軟體核心複雜度的解決方法 (Domain-Driven Design: Tackling Complexity in the Heart of Software)$680$530 -
$1,260Powershell for Sysadmins: A Hands-On Guide to Automating Your Workflow -
重構|改善既有程式的設計, 2/e (繁中平裝版)(Refactoring: Improving The Design of Existing Code, 2/e)$800$632 -
Kali Linux 滲透測試工具|花小錢做資安,你也是防駭高手, 3/e$880$748 -
$1,683Web Application Security: Exploitation and Countermeasures for Modern Web Applications -
$301Web 安全漏洞原理及實戰 -
神之手:動畫大神 加加美高浩的繪手神技$550$495 -
零信任網路|在不受信任的網路中建構安全系統 (Zero Trust Networks)$480$379 -
重新認識 Vue.js:008天絕對看不完的 Vue.js 3 指南$600$468 -
生活資安五四三!:從生活周遭看風險與資訊安全(iT邦幫忙鐵人賽系列書)$500$390 -
Windows APT Warfare:惡意程式前線戰術指南$600$468 -
不只是工程師才要懂的 App 資訊安全:取得資安檢測合格證書血淚史(iT邦幫忙鐵人賽系列書)$600$468 -
網路時代人人要學的資安基礎必修課 (How Cybersecurity Really Works)$480$379 -
Windows Server 2022 Active Directory 建置實務$620$465 -
Web API 設計原則|API 與微服務傳遞價值之道 (Principles of Web API Design: Delivering Value with APIs and Microservices)$520$411 -
駭客就在你旁邊:內網安全攻防滲透你死我活, 2/e$880$695 -
快速學會 Python 架站技術:活用 Django 4 建構動態網站的 16堂課$780$608 -
Kali Linux 滲透測試全流程詳解$599$569 -
$1,845Grokking Web Application Security (Paperback) -
$764隱私保護計算實戰
相關主題
商品描述
The new and improved guide to penetration testing using the legendary Metasploit Framework.
Metasploit: The Penetration Tester's Guide has been the definitive security assessment resource for over a decade. The Metasploit Framework makes discovering, exploiting, and sharing vulnerabilities quick and relatively painless, but using it can be challenging for newcomers.
Written by renowned ethical hackers and industry experts, this fully updated second edition includes:
- Advanced Active Directory and cloud penetration testing
- Modern evasion techniques and payload encoding
- Malicious document generation for client-side exploitation
- Coverage of recently added modules and commands
Starting with Framework essentials--exploits, payloads, Meterpreter, and auxiliary modules--you'll progress to advanced methodologies aligned with the Penetration Test Execution Standard (PTES). Through real-world examples and simulated penetration tests, you'll:
- Conduct network reconnaissance and analyze vulnerabilities
- Execute wireless network and social engineering attacks
- Perform post-exploitation techniques, including privilege escalation
- Develop custom modules in Ruby and port existing exploits
- Use MSFvenom to evade detection
- Integrate with Nmap, Nessus, and the Social-Engineer Toolkit
Whether you're a cybersecurity professional, ethical hacker, or IT administrator, this second edition of Metasploit: The Penetration Tester's Guide is your key to staying ahead in the ever-evolving threat landscape.
商品描述(中文翻譯)
使用傳奇的 Metasploit Framework 進行滲透測試的新改進指南。
Metasploit: The Penetration Tester's Guide 已經成為超過十年的權威安全評估資源。Metasploit Framework 使得發現、利用和分享漏洞變得快速且相對輕鬆,但對於新手來說,使用它可能會有挑戰。
本書由知名的道德駭客和行業專家撰寫,這一全面更新的第二版包括:
- 進階的 Active Directory 和雲端滲透測試
- 現代的躲避技術和有效載荷編碼
- 用於客戶端利用的惡意文檔生成
- 涵蓋最近新增的模組和命令
從 Framework 的基本要素開始——利用、有效載荷、Meterpreter 和輔助模組——您將進步到與滲透測試執行標準 (PTES) 對齊的進階方法。通過真實世界的例子和模擬滲透測試,您將:
- 進行網路偵查並分析漏洞
- 執行無線網路和社會工程攻擊
- 執行後利用技術,包括特權提升
- 使用 Ruby 開發自定義模組並移植現有的利用
- 使用 MSFvenom 來躲避檢測
- 與 Nmap、Nessus 和社會工程工具包整合
無論您是網路安全專業人士、道德駭客還是 IT 管理員,這本 Metasploit: The Penetration Tester's Guide 的第二版都是您在不斷演變的威脅環境中保持領先的關鍵。
作者簡介
Dave Kennedy, founder of Binary Defense and TrustedSec, is a cybersecurity leader who advised on the Emmy-winning series Mr. Robot. Mati Aharoni, OffSec founder, is a veteran penetration tester who has uncovered major security flaws. Devon Kearns co-founded the Exploit Database and Kali Linux. Jim O'Gorman heads the Kali Linux project at OffSec. Daniel G. Graham is a professor of computer science at the University of Virginia and a former program manager at Microsoft.
作者簡介(中文翻譯)
戴夫·肯尼迪(Dave Kennedy),Binary Defense 和 TrustedSec 的創辦人,是一位網路安全領袖,曾為獲得艾美獎的系列劇 機器人先生 提供建議。馬提·阿哈羅尼(Mati Aharoni),OffSec 的創辦人,是一位資深的滲透測試員,曾揭露多個重大安全漏洞。德文·基爾恩斯(Devon Kearns)共同創辦了 Exploit Database 和 Kali Linux。吉姆·奧戈曼(Jim O'Gorman)負責 OffSec 的 Kali Linux 項目。丹尼爾·G·格雷厄姆(Daniel G. Graham)是維吉尼亞大學的計算機科學教授,並曾擔任微軟的程式經理。
