Building Virtual Pentesting Labs for Advanced Penetration Testing (Paperback)

Kevin Cardwell

  • 出版商: Packt Publishing
  • 出版日期: 2014-06-14
  • 售價: $2,500
  • 貴賓價: 9.5$2,375
  • 語言: 英文
  • 頁數: 480
  • 裝訂: Paperback
  • ISBN: 1783284773
  • ISBN-13: 9781783284771
  • 相關分類: Penetration-test
  • 海外代購書籍(需單獨結帳)

買這商品的人也買了...

商品描述

Build intricate virtual architecture to practice any penetration testing technique virtually

Overview

  • Build and enhance your existing pentesting methods and skills
  • Get a solid methodology and approach to testing
  • Step-by-step tutorial helping you build complex virtual architecture

In Detail

A penetration test, also known as pentest, is a method of assessing computer and network security by replicating an attack on a computer system or network from the outside world and internal threats. With the increase of advanced hackers and threats to our virtual world, pentesting is an absolute necessity.

Building Virtual Pentesting Labs for Advanced Penetration Testing will teach you how to build your own labs and give you a proven process to test these labs; a process that is currently used in industry by global pentesting teams. You will also learn a systematic approach to professional security testing, building routers, firewalls, and web servers to hone your pentesting skills.

What you will learn from this book

  • Build routers, firewalls, and web servers to hone your pentesting skills
  • Deploy and then find the weaknesses in a firewall architecture
  • Construct a layered architecture and perform a systematic process and methodology to use for conducting an external test
  • Get introduced to several of the different security testing methodologies
  • Design monitored environments and evade them
  • Create complex architecture
  • Bypass antivirus and other protection
  • Practice methods of evasion against today's top defenses
  • Leverage the client configuration

Approach

Written in an easy-to-follow approach using hands-on examples, this book helps you create virtual environments for advanced penetration testing, enabling you to build a multi-layered architecture to include firewalls, IDS/IPS, web application firewalls, and endpoint protection, which is essential in the penetration testing world.

Who this book is written for

If you are a penetration tester, security consultant, security test engineer, or analyst who wants to practice and perfect penetration testing skills by building virtual pentesting labs in varying industry scenarios, this is the book for you. This book is ideal if you want to build and enhance your existing pentesting methods and skills. Basic knowledge of network security features is expected along with web application testing experience.

商品描述(中文翻譯)

建立複雜的虛擬架構,以虛擬方式練習任何滲透測試技巧

概述:
- 建立和增強現有的滲透測試方法和技能
- 獲得穩固的測試方法和途徑
- 逐步教學,幫助您建立複雜的虛擬架構

詳細內容:
滲透測試(也稱為pentest)是一種評估計算機和網絡安全性的方法,通過模擬對計算機系統或網絡的外部世界和內部威脅的攻擊來進行。隨著高級黑客和對我們虛擬世界的威脅增加,滲透測試是絕對必要的。

《建立用於高級滲透測試的虛擬測試實驗室》將教您如何建立自己的實驗室,並為您提供一個在全球滲透測試團隊中目前使用的測試進程;您還將學習一種系統化的專業安全測試方法,建立路由器、防火牆和Web服務器,以磨練您的滲透測試技能。

本書的學習重點:
- 建立路由器、防火牆和Web服務器,以磨練您的滲透測試技能
- 部署並找出防火牆架構的弱點
- 構建分層架構,並執行系統化的過程和方法,用於進行外部測試
- 介紹幾種不同的安全測試方法
- 設計監控環境並規避它們
- 創建複雜的架構
- 繞過防病毒和其他保護
- 實踐對當今頂尖防禦的規避方法
- 利用客戶端配置

方法:
本書以易於理解的方式撰寫,並提供實際示例,幫助您創建用於高級滲透測試的虛擬環境,使您能夠建立多層架構,包括防火牆、入侵檢測/防禦系統、Web應用防火牆和端點保護,這在滲透測試領域中至關重要。

本書適合對象:
如果您是滲透測試人員、安全顧問、安全測試工程師或分析師,希望通過在不同行業場景中建立虛擬滲透測試實驗室來練習和完善滲透測試技能,那麼本書非常適合您。如果您想建立和增強現有的滲透測試方法和技能,並且具備基本的網絡安全功能知識以及Web應用測試經驗,本書也非常適合您。