Mastering Kali Linux for Advanced Penetration Testing: Apply a proactive approach to secure your cyber infrastructure and enhance your pentesting skills, 4th Edition

Book Description

Master key approaches used by real attackers to perform advanced pentesting in tightly secured infrastructure, cloud environments, and applications, and become familiar with the latest hacking techniques

Key Features

• Master advanced pentesting tactics and techniques with Kali Linux to build highly secure systems
• Leverage Kali Linux to penetrate modern infrastructures and avoid detection
• Explore red teaming and play the hackers game to proactively defend your infrastructure

Book Description

COVID-19 has changed the way we live and work. Remote working has given hackers plenty of opportunities as more confidential information is shared over the internet than ever before. In this new edition of Mastering Kali Linux for Advanced Penetration Testing, you will learn an offensive approach to enhance your penetration testing skills by becoming aware of the tactics employed by real attackers. You will be introduced to laboratory integration to cloud services so that you learn another dimension of exploitation that is typically forgotten during a penetration test.

Gathering all possible information on a target is pivotal for a penetration tester. This book covers the principles of passive and active reconnaissance, from obtaining user information to large-scale port scanning. Building on reconnaissance, different vulnerability assessments are explored, including threat modeling. You’ll also learn about COVID-19 pandemic-specific cyber failures and understand the cyber risks involved with working from home.

By the end of this Kali Linux book, you will have explored approaches for performing advanced pentesting in tightly secured infrastructure, cloud environments, and applications and hacking techniques employed on IoT, embedded peripheral devices, and radio frequencies.

What you will learn

• Exploit networks using wired/wireless networks, cloud infrastructure, and web services
• Learn embedded peripheral device, radio frequency, and IoT hacking techniques
• Master the art of bypassing traditional antivirus and endpoint detection and response (EDR) tools
• Test for data system exploits using Metasploit, PowerShell Empire, and CrackMapExec
• Perform cloud security vulnerability assessment and exploitation of security misconfiguration
• Take your physical security testing to the next level with RFID/Bluetooth hacking and learn how to clone identity cards

Who this book is for

This fourth edition is for security analysts, pentesters, ethical hackers, red team operators, and security consultants wanting to learn and optimize infrastructure/application/cloud security using advanced Kali Linux features. Prior penetration testing experience and basic knowledge of ethical hacking will help you make the most of this book.

中文：

书名：掌握Kali Linux以进行高级渗透测试：应用主动方法保护您的网络基础设施并增强您的测试技能，第4版

掌握真实攻击者用于在安全严密的基础设施、云环境和应用程序中执行高级五层测试的密钥方法，并熟悉最新的黑客技术

Key Features

• 使用Kali Linux掌握高级测试策略和技术，以构建高度安全的系统
• 利用Kali Linux渗透到现代基础架构并避免检测
• Explore red teaming and play the hackers game to proactively defend your infrastructure

Book Description

新冠肺炎改变了我们的生活和工作方式。远程工作为黑客提供了大量机会，因为互联网上分享的机密信息比以往任何时候都多。在这个新版本的掌握高级渗透测试的Kali Linux中，你将学习一种进攻方法，通过了解真正攻击者使用的战术来提高你的渗透测试技能。我们将向您介绍实验室与云服务的集成，以便您了解渗透测试期间通常会忘记的另一方面的利用。

对于突防测试仪来说，收集目标的所有可能信息是至关重要的。这本书涵盖了被动和主动侦察的原理，从获取用户信息到大规模端口扫描。在侦察的基础上，探索了不同的脆弱性评估，包括威胁建模。您还将了解新冠肺炎疫情特有的网络故障，并了解在家工作所涉及的网络风险。

到这本Kali Linux书籍结束时，您将已经探索了在严密安全的基础设施、云环境以及物联网、嵌入式外围设备和无线电频率上使用的应用程序和黑客技术中执行高级五层测试的方法。

What you will learn

• 使用有线/无线网络、云基础设施和Web服务利用网络
• 了解嵌入式外围设备、射频和物联网黑客技术
• 掌握绕过传统防病毒和终端检测与响应(EDR)工具的技巧
• 使用Metasploit、PowerShell Empire和CrackMapExec测试数据系统攻击
• 执行云安全漏洞评估并利用安全配置错误
• 使用RFID/蓝牙黑客将您的物理安全测试提升到一个新的水平，并了解如何克隆身份证

这本书是为谁而写的

第四版面向希望学习和使用高级Kali Linux功能优化基础设施/应用程序/云安全的安全分析师、五角大楼人员、道德黑客、红色团队操作员和安全顾问。先前的渗透测试经验和道德黑客的基本知识将帮助您充分利用这本书。