公社斗地主赚钱

Burpsuiteisasetofgraphictoolsfocusedtowardspenetrationtestingofwebapplications.Burpsuiteiswidelyusedforwebpenetrationtestingbymanysecurityprofessionalsforperformingdifferentweb-levelsecuritytasks.Thebookstartsbysettinguptheenvironmenttobeginanapplicationpenetrationtest.Youwillbeabletoconfiguretheclientandapplytargetwhitelisting.YouwillalsolearntosetupandconfigureAndroidandIOSdevicestoworkwithBurpSuite.ThebookwillexplainhowvariousfeaturesofBurpSuitecanbeusedtodetectvariousvulnerabilitiesaspartofanapplicationpenetrationtest.Oncedetectioniscompletedandthevulnerabilityisconfirmed,youwillbeabletoexploitadetectedvulnerabilityusingBurpSuite.ThebookwillalsocoversadvancedconceptslikewritingextensionsandmacrosforBurpsuite.Finally,youwilldiscovervariousstepsthataretakentoidentifythetarget,discoverweaknessesintheauthenticationmechanism,andfinallybreaktheauthenticationimplementationtogainaccesstotheadministrativeconsoleoftheapplication.Bytheendofthisbook,youwillbeabletoeffectivelyperformend-to-endpenetrationtestingwithBurpSuite.

·4.5萬字

會員

電腦安全與攻防入門很輕松（實戰超值版）

《電腦安全與攻防入門很輕松：實戰超值版》在剖析用戶進行黑客防御中迫切需要或想要用到的技術時，力求對其進行實操式的講解，使讀者對網絡防御技術有一個系統的了解，能夠更好地防范黑客的攻擊。《電腦安全與攻防入門很輕松：實戰超值版》共分為14章，包括電腦安全快速入門、電腦系統漏洞的安全防護、計算機病毒與木馬的安全防護、計算機系統的安全防護、計算機系統賬戶的安全防護、磁盤數據的安全防護、文件密碼數據的安全防護、系統入侵與遠程控制的安全防護、網絡賬號及密碼的安全防護、網頁瀏覽器的安全防護、手機與平板電腦的安全防護、網上銀行的安全防護、手機支付的安全防護、無線網絡的安全防護等內容。《電腦安全與攻防入門很輕松：實戰超值版》內容豐富、圖文并茂、深入淺出，不僅適用于網絡安全從業人員及網絡管理員，而且適用于廣大網絡愛好者，也可作為大、中專院校計算機安全相關專業的參考書。

·10.9萬字

會員

Active Directory Administration Cookbook

ActiveDirectoryisanadministrationsystemforWindowsadministratorstoautomatenetwork,securityandaccessmanagementtasksintheWindowsinfrastructure.Thisbookstartsoffwithadetailedfocusonforests,domains,trusts,schemasandpartitions.Next,youlearnhowtomanagedomaincontrollers,organizationalunitsandthedefaultcontainers.Goingforward,youdeepdiveintomanagingActiveDirectorysitesaswellasidentifyingandsolvingreplicationproblems.ThenextsetofchapterscoversthedifferentcomponentsofActiveDirectoryanddiscussesthemanagementofusers,groupsandcomputers.YoualsogothroughrecipesthathelpyoumanageyourActiveDirectorydomains,manageuserandgroupsobjectsandcomputeraccounts,expiringgroupmembershipsandgroupManagedServiceAccountswithPowerShell.YoulearnhowtoworkwithGroupPolicyandhowtogetthemostoutofit.Thelastsetofchapterscoversfederation,securityandmonitoring.YouwillalsolearnaboutAzureActiveDirectoryandhowtointegrateon-premisesActiveDirectorywithAzureAD.YoulearnhowAzureADConnectsynchronizationworks,whichwillhelpyoumanageAzureAD.Bytheendofthebook,youhavelearnedindetailaboutActiveDirectoryandAzureAD,too.

·10.7萬字

會員

Hands-On Penetration Testing with Kali NetHunter

KaliNetHunterisaversionofthepopularandpowerfulKaliLinuxpentestingplatform,designedtobeinstalledonmobiledevices.Hands-OnPenetrationTestingwithKaliNetHunterwillteachyouthecomponentsofNetHunterandhowtoinstallthesoftware.You’llalsolearnaboutthedifferenttoolsincludedandhowtooptimizeanduseapackage,obtaindesiredresults,performtests,andmakeyourenvironmentmoresecure.StartingwithanintroductiontoKaliNetHunter,youwilldelveintodifferentphasesofthepentestingprocess.Thisbookwillshowyouhowtobuildyourpenetrationtestingenvironmentandsetupyourlab.Youwillgaininsightintogatheringintellectualdata,exploitingvulnerableareas,andgainingcontrolovertargetsystems.Asyouprogressthroughthebook,youwillexploretheNetHuntertoolsavailableforexploitingwiredandwirelessdevices.Youwillworkthroughnewwaystodeployexistingtoolsdesignedtoreducethechancesofdetection.Intheconcludingchapters,youwilldiscovertipsandbestpracticesforintegratingsecurityhardeningintoyourAndroidecosystem.Bytheendofthisbook,youwillhavelearnedtosuccessfullyuseamobilepenetrationtestingdevicebasedonKaliNetHunterandAndroidtoaccomplishthesametasksyouwouldtraditionally,butinasmallerandmoremobileformfactor.

·4.9萬字

會員

Kali Linux Wireless Penetration Testing Cookbook

Ifyouareasecurityprofessional,administrator,andanetworkprofessionalwhowantstoenhancetheirwirelesspenetrationtestingskillsandknowledgethenthisbookisforyou.Somepriorexperiencewithnetworkingsecurityandconceptsisexpected.

·5.6萬字

會員

Becoming the Hacker

BecomingtheHackerwillteachyouhowtoapproachwebpenetrationtestingwithanattacker'smindset.Whiletestingwebapplicationsforperformanceiscommon,theever-changingthreatlandscapemakessecuritytestingmuchmoredifficultforthedefender.Therearemanywebapplicationtoolsthatclaimtoprovideacompletesurveyanddefenseagainstpotentialthreats,buttheymustbeanalyzedinlinewiththesecurityneedsofeachwebapplicationorservice.Wemustunderstandhowanattackerapproachesawebapplicationandtheimplicationsofbreachingitsdefenses.Throughthefirstpartofthebook,AdrianPruteanuwalksyouthroughcommonlyencounteredvulnerabilitiesandhowtotakeadvantageofthemtoachieveyourgoal.Thelatterpartofthebookshiftsgearsandputsthenewlylearnedtechniquesintopractice,goingoverscenarioswherethetargetmaybeapopularcontentmanagementsystemoracontainerizedapplicationanditsnetwork.BecomingtheHackerisaclearguidetowebapplicationsecurityfromanattacker'spointofview,fromwhichbothsidescanbenefit.

·8.1萬字

會員

計算機網絡安全技術（第6版·慕課版）

本書根據高職院校的教學特點和培養目標編寫而成，全面介紹了計算機網絡安全的基本框架、基本理論，以及計算機網絡安全方面的管理、配置和維護技術。全書共7章，主要內容包括計算機網絡安全概述、黑客常用的攻擊方法、計算機病毒、數據加密技術、防火墻技術、Windows操作系統安全及Web應用安全。本書注重實用性，以實驗為依托，將實驗內容融合在課程內容中，使理論緊密聯系實際。本書既可作為高職高專計算機及相關專業的教材，也可作為相關技術人員的參考書或培訓教材。

·14.6萬字

會員

關鍵信息基礎設施安全保護方法與應用

本書對關鍵信息基礎設施的概念范疇與安全保護形勢、安全保護關鍵技術、安全管理方法策略及重要行業應用實踐作出系統論述。本書提出監測預警、安全防御、應急處置、數據安全保護等重點技術，制度建設、信息共享、供應鏈安全、人才培養等管理策略，詳細闡述如何兼顧技術手段建設與管理制度建設，做好關鍵信息基礎設施安全保護。同時，本書針對各行業面臨的安全風險不盡相同、安全保護需求各有側重等特點，圍繞電力、交通、金融、電子政務等重要行業領域，運用實際案例闡釋安全保護解決方案。本書可以幫助運營者深入了解安全保護方法，把握關鍵環節做好安全保護，從而在日益嚴峻的安全形勢中做到有備無患。

·17.8萬字

會員

Building Virtual Pentesting Labs for Advanced Penetration Testing

Writteninaneasy-to-followapproachusinghands-onexamples,thisbookhelpsyoucreatevirtualenvironmentsforadvancedpenetrationtesting,enablingyoutobuildamulti-layeredarchitecturetoincludefirewalls,IDS/IPS,webapplicationfirewalls,andendpointprotection,whichisessentialinthepenetrationtestingworld.Ifyouareapenetrationtester,securityconsultant,securitytestengineer,oranalystwhowantstopracticeandperfectpenetrationtestingskillsbybuildingvirtualpentestinglabsinvaryingindustryscenarios,thisisthebookforyou.Thisbookisidealifyouwanttobuildandenhanceyourexistingpentestingmethodsandskills.Basicknowledgeofnetworksecurityfeaturesisexpectedalongwithwebapplicationtestingexperience.

·9.6萬字

會員

Kali Linux 2018：Assuring Security by Penetration Testing

KaliLinuxisacomprehensivepenetrationtestingplatformwithadvancedtoolstoidentify,detect,andexploitthevulnerabilitiesuncoveredinthetargetnetworkenvironment.WithKaliLinux,youcanapplytheappropriatetestingmethodologywithdefinedbusinessobjectivesandascheduledtestplan,resultinginsuccessfulpenetrationtestingprojectengagement.ThisfourtheditionofKaliLinux2018:AssuringSecuritybyPenetrationTestingstartswiththeinstallationofKaliLinux.Youwillbeabletocreateafulltestenvironmenttosafelypracticescanning,vulnerabilityassessment,andexploitation.You’llexploretheessentialsofpenetrationtestingbycollectingrelevantdataonthetargetnetworkwiththeuseofseveralfootprintinganddiscoverytools.Asyoumakeyourwaythroughthechapters,you’llfocusonspecifichostsandservicesviascanningandrunvulnerabilityscanstodiscovervariousrisksandthreatswithinthetarget,whichcanthenbeexploited.Intheconcludingchapters,you’llapplytechniquestoexploittargetsystemsinordertogainaccessandfindawaytomaintainthataccess.You’llalsodiscovertechniquesandtoolsforassessingandattackingdevicesthatarenotphysicallyconnectedtothenetwork,includingwirelessnetworks.Bytheendofthisbook,youwillbeabletouseNetHunter,themobileversionofKaliLinux,andwriteadetailedreportbasedonyourfindings.

·8.7萬字

會員

Mastering Metasploit

Acomprehensiveanddetailed,stepbysteptutorialguidethattakesyouthroughimportantaspectsoftheMetasploitframework.Ifyouareapenetrationtester,securityengineer,orsomeonewhoislookingtoextendtheirpenetrationtestingskillswithMetasploit,thenthisbookisidealforyou.ThereadersofthisbookmusthaveabasicknowledgeofusingMetasploit.Theyarealsoexpectedtohaveknowledgeofexploitationandanindepthunderstandingofobject-orientedprogramminglanguages.

·6.9萬字

會員

Nmap 6：Network exploration and security auditing Cookbook

Thebookisacollectionofeasytofollow,practicalrecipeswithexplanationsofthecode,andlinkstofurtherinformation.Thisbookisforanysecurityconsultant,administratororenthusiastlookingtolearnhowtouseandmasterNmapandtheNmapScriptingEngine.

·6.8萬字

會員

Mastering Blockchain

Thisbookappealstothosewhowishtobuildfast,highlysecure,transactionalapplications.Thisbookisforthosewhoarefamiliarwiththeconceptofblockchainandarecomfortablewithaprogramminglanguage.

·11.1萬字

會員

網絡空間安全原理與實踐

《網絡空間安全原理與實踐》是信息安全、網絡空間安全系列教材的第一冊，主要著墨于信息安全的基本原理、各類網絡攻擊方式與基于思科設備的防御特性、AAA（認證、授權和審計）的原理與部署、防火墻的基本原理、加密原理與VPN（虛擬專用網絡）的基本概念及基于思科設備的實現等內容。另外，本書也簡單介紹了一些掃描工具及其在Windows環境中的基本使用方法。《網絡空間安全原理與實踐》不僅適合計算機網絡、信息安全、網絡空間安全專業的學生作為教材使用，而且適合網絡安全技術愛好者，以及各類學完CCNA課程或者思科網院課程，希望進一步了解安全相關技術及原理的技術人員閱讀。

·10.4萬字

會員

網絡安全工具攻防實戰從新手到高手（微課超值版）

《網絡安全工具攻防實戰從新手到高手：微課超值版》在剖析用戶進行黑客防御中迫切需要用到或迫切想要用到的技術時，力求對其進行傻瓜式的講解，使讀者對網絡防御技術形成系統了解，能夠更好地防范黑客的攻擊。全書共分為13章，包括計算機安全快速入門、常用掃描與嗅探工具、系統漏洞與安全防護工具、遠程控制攻防工具、文件加密解密工具、病毒與木馬防御工具、U盤病毒防御工具、網絡賬號及密碼防護工具、進程與注冊表管理工具、局域網安全防護工具、數據備份與恢復工具、系統備份與還原工具、無線網絡安全防護工具等內容。

·9.8萬字

會員

AWS Certified Security：Specialty Exam Guide

AWSCertifiedSecurity–Specialtyisacertificationexamtovalidateyourexpertiseinadvancedcloudsecurity.Withanever-increasingdemandforAWSsecurityskillsinthecloudmarket,thiscertificationcanhelpyouadvanceinyourcareer.Thisbookhelpsyoupreparefortheexamandgaincertificationbyguidingyouthroughbuildingcomplexsecuritysolutions.FromunderstandingtheAWSsharedresponsibilitymodelandidentityandaccessmanagementtoimplementingaccessmanagementbestpractices,you'llgraduallybuildonyourskills.ThebookwillalsodelveintosecuringinstancesandtheprinciplesofsecuringVPCinfrastructure.Coveringsecuritythreats,vulnerabilities,andattackssuchastheDDoSattack,you'lldiscoverhowtomitigatetheseatdifferentlayers.You'llthencovercomplianceandlearnhowtouseAWStoauditandgoverninfrastructure,aswellastofocusonmonitoringyourenvironmentbyimplementingloggingmechanismsandtrackingdata.Later,you'llexplorehowtoimplementdataencryptionasyougethands-onwithsecuringaliveenvironment.Finally,you'lldiscoversecuritybestpracticesthatwillassistyouinmakingcriticaldecisionsrelatingtocost,security,anddeploymentcomplexity.BytheendofthisAWSsecuritybook,you'llhavetheskillstopasstheexamanddesignsecureAWSsolutions.

·9.7萬字

會員

網絡安全保障能力研究

本書介紹了網絡安全的基礎知識，力求系統全面地闡述網絡安全領域的相關內容和內涵；著眼于網絡安全技術、人才、產業、政策、實踐等多個角度，分析了我國的網絡安全總體態勢及面臨的突出問題；總結了網絡空間國際競爭合作的態勢，以及國外網絡安全工作的經驗和做法；系統地闡述了提高網絡安全保障能力的背景、意義及能力建設問題。本書以提高網絡安全保障能力為出發點，立足于國內和國外、理論和實踐等不同層面，有助于啟發讀者結合自身需求，不斷深化拓展對網絡安全及相關工作的理解，提高對網絡安全保障能力的科學認知。本書可供廣大黨員干部和互聯網從業人員參考借鑒。

·10.3萬字

會員

SQL Injection Strategies

SQLinjection(SQLi)isprobablythemostinfamousattackthatcanbeunleashedagainstapplicationsontheinternet.SQLInjectionStrategiesisanend-to-endguideforbeginnerslookingtolearnhowtoperformSQLinjectionandtestthesecurityofwebapplications,websites,ordatabases,usingbothmanualandautomatedtechniques.ThebookservesasbothatheoreticalandpracticalguidetotakeyouthroughtheimportantaspectsofSQLinjection,bothfromanattackandadefenseperspective.You’llstartwithathoroughintroductiontoSQLinjectionanditsimpactonwebsitesandsystems.Later,thebookfeaturesstepstoconfigureavirtualenvironment,soyoucantrySQLinjectiontechniquessafelyonyourowncomputer.ThesetestscanbeperformednotonlyonwebapplicationsbutalsoonwebservicesandmobileapplicationsthatcanbeusedformanagingIoTenvironments.Toolssuchassqlmapandothersarethencovered,helpingyouunderstandhowtousethemeffectivelytoperformSQLinjectionattacks.Bytheendofthisbook,youwillbewell-versedwithSQLinjection,fromboththeattackanddefenseperspective.

·4.7萬字

會員

Python Penetration Testing Essentials

IfyouareaPythonprogrammer,asecurityresearcher,oranethicalhackerandareinterestedinpenetrationtestingwiththehelpofPython,thenthisbookisforyou.Evenifyouarenewtothefieldofethicalhacking,thisbookcanhelpyoufindthevulnerabilitiesinyoursystemsothatyouarereadytotackleanykindofattackorintrusion.

·3.7萬字

會員

CPK通向賽博安全之路：理論與實踐CPK Solution to Cyber Security：Theory and Practice

本書以公眾網的新視野分析信息安全、網絡安全、系統安全、交易安全、安全管理，并探索網信安全的實質。網信空間由實體空間和事件空間構成，鑒別技術是安全的核心技術。由此形成了基于實體鑒別的物聯網和基于事件鑒別的事聯網的新概念。新概念必須用新技術才能解決。所用新技術是CPK組合公鑰、標識鑒別、虛擬網絡、數字印章等。CPK是基于標識的公鑰，直到目前唯一兼有數字簽名和密鑰加密功能的體制，其簽名碼最短，可實現標識鑒別。標識鑒別是信息安全的核心技術，也是難點，唯獨CPK才能解決。在解決標識鑒別的基礎上就可以構建基于證據的虛擬網絡。虛擬網絡是從任何標識到任何標識的（ItoI）的可證網絡，是物聯網和是聯網的基本型。數字印章提供了是實現可證互聯、可證交易的實現方法，并統一了現實世界和網絡是世界的印章。新概念的實現需要將研究思路從形象思維提高到抽象思維；將安全戰略從被動防護提高到主動管理；將鑒別邏輯從基于模型的可信邏輯提高到基于證據的真值邏輯，將網信安全的總體構架建立在安全理論的基礎之上。

·6.7萬字

跳轉至頁

官术网_书友最值得收藏!

電腦安全

分類

狀態

屬性

字數

更新時間

Hands-On Application Penetration Testing with Burp Suite