Hacking and Security: The Comprehensive Guide to Penetration Testing and Cybersecurity (Rheinwerk Computing)
by 作者: Michael Kofler (Author), Klaus Gebeshuber (Author), Peter Kloep (Author), Frank Neugebauer (Author), André Zingsheim (Author), Thomas Hackner (Author), Markus Widl (Author), Roland Aigner (Author), Stefan Kania (Author), Tobias Scheible (Author), Dr Matthias Wübbeling (Author) & 7 more
Publisher Finelybook 出版社: Rheinwerk Computing
Publication Date 出版日期: 2023-07-27
Language 语言: English
pages 页数: : 1141 pages
ISBN-10 书号: 1493224255
ISBN-13 书号: 9781493224258
Book Description
Uncover security vulnerabilities and harden your system against attacks! With this guide you’ll learn to set up a virtual learning environment where you can test out hacking tools, from Kali Linux to hydra and Wireshark. Then with step-by-step instructions you’ll expand your understanding of offline hacking, external safety checks, penetration testing in networks, and other essential security techniques, including steps for mobile, cloud, and IoT security. Use this guide to ensure your system can withstand any threat!
Understand IT system vulnerabilities and identify attack vectors
Learn to secure multiple infrastructures, including Linux, Microsoft Windows, cloud, and mobile
Master pen testing with tools like Metaspolit, Kali Linux, hydra, Open-VAS, Empire, Pwnagotchi, and more
Key Concepts and Tools Set up your environment with Metasploitable and Juice Shop, install Kali Linux, and explore hacking tools like nmap, hydra, and Armitage that will assist you with the more complex practices covered in later chapters.
Penetration Testing and Security Practices From man-in-the-middle attacks to finding vulnerabilities using nmap, walk step-by-step through client-side and network penetration testing. Master key security techniques like passwords, IT forensics, and safety checks and see how to secure Windows servers, Linux, Samba file servers, and web applications.
Advanced Security Concepts Supplement your understanding of security concepts with practical instruction and theoretical information on more advanced topics like cloud, mobile, and Internet of Things security. Learn how to secure Office 365 through multi-level authentication and conditional access, explore protective measures for Android and iOS, and determine IoT protocols and services. Preface
1 Introduction
2 Kali Linux
3 Setting Up the Learning Environment: Metasploitable, Juice Shop
4 Hacking Tools
5 Offline Hacking
6 Passwords
7 IT Forensics
8 wwi-Fi. Bluetooth, and sDR
9 Attack Vector UsB Interface
10 External Security Checks
11 Penetration Testing
12 securing windows Servers
13 Active Directory
14 securing Linux
15 Security of Samba File Servers
16 Intrusion Detection Svstems
17 Security ofebApplications
18 Software Exploitation
19 Bug Bounty Programs
20 Security in the Cloud
21 Securing Microsoft 365
22 Mobile Security
23 Internet of Things Security
The Authors
Index
About the Author
Michael Kofler is a renowned author of German IT publications. He works as an administrator and software developer, and is also a lecturer at a technical college. Michael is the driving force behind Hacking & Security, having written a number of its chapters, recruited its author team, designed the book, and supervised its writing as editor.
Klaus Gebeshuber is the professor of IT security at FH JOANNEUM, University of Applied Sciences in Kapfenberg, Austria. His focus is on network security, industrial security, security analysis, and penetration testing. He holds numerous industry certificates in the field of IT security, network security, and penetration testing.
Peter Kloep is an expert of secure Microsoft Windows infrastructures in German-speaking countries. He has been a Microsoft Certified Trainer since 2002 and has held numerous technical training courses on Windows administration since then. He is also a Microsoft Certified Software Engineer and Microsoft Certified Solutions Master - Windows Server 2012.
Frank Neugebauer worked in IT security for more than 25 years as an officer in the German Armed Forces. He was also employed as an IT security officer for various departments in Germany and abroad, a systems engineer at a NATO headquarters, and head of an incident response team. As a member of the German Armed Forces' Computer Emergency Response Team, he played a key role in analyzing vulnerabilities in many German Armed Forces networks.
André Zingsheim works as a senior security consultant at TÜV TRUST IT GmbH. In addition to technical security analyzes and penetration tests of IT systems and infrastructures, he deals intensively with the security of mobile devices. He is a penetration tester certified by the Bundesamt für Sicherheit in der Informationstechnik (BSI) (Federal Office for Information Security).
Thomas Hackner is senior security consultant and managing director of HACKNER Security Intelligence GmbH, which he founded in 2010 after studying secure information systems in Hagenberg, Upper Austria. He also works on international projects in which both IT networks and web applications as well as SCADA systems are checked for security in the form of penetration tests.
Markus Widl has been working as a consultant, developer, and trainer in IT for more than 20 years. His focus is on cloud technologies such as MS Office 365 and Microsoft Azure.
Roland Aigner is an expert in secure IoT infrastructures. He developed firmware and software for medical in-vitro diagnostics, is a co-author of the Bluetooth SIG, and a founding member of the NFC Forum, where he was specifically responsible for ticketing and communication security.
Stefan Kania has been a freelance consultant and trainer since 1997. His focus is on the secure implementation of Samba and LDAP as well as training on both topics.
Tobias Scheible is a research associate at Albstadt-Sigmaringen University. There he works as a lecturer in the university certificate program at the Institut für wissenschaftliche Weiterbildung (IWW) (Institute for Scientific Continuing Education) and holds extra-occupational modules in the areas of network security, Internet technologies, and IT forensics. In addition, he holds lectures and workshops for associations and companies, including open events for the VDI.
Matthias Wübbeling is an IT security enthusiast, scientist, author, entrepreneur, consultant, and speaker. As an academic advisor at the University of Bonn and a scientist at Fraunhofer FKIE, he researches and teaches in the areas of network security, IT security awareness, and identity theft.
finelybook
