Know how to set up, defend, and attack computer networks with this revised and expanded second edition.
You will learn to configure your network from the ground up, beginning with developing your own private virtual test environment, then setting up your own DNS server and AD infrastructure. You will continue with more advanced network services, web servers, and database servers and you will end by building your own web applications servers, including Word Press and Joomla!. Systems from 2011 through 2017 are covered, including Windows 7, Windows 8, Windows 10, Windows Server 2012, and Windows Server 2016 as well as a range of Linux distributions, including Ubuntu, Cent OS, Mint, and Open SUSE.
Key defensive techniques are integrated throughout and you will develop situational awareness of your network and build a complete defensive infrastructure, including log servers, network firewalls, web application firewalls, and intrusion detection systems.Of course, you cannot truly understand how to defend a network if you do not know how to attack it, so you will attack your test systems in a variety of ways. You will learn about Metasploit, browser attacks, privilege escalation, pass-the-hash attacks, malware, man-in-the-middle attacks, database attacks, and web application attacks.
What You’ll Learn
- Construct a testing laboratory to experiment with software and attack techniques
- Build realistic networks that include active directory, file servers, databases, web servers, and web applications such as Word Press and Joomla!
- Manage networks remotely with tools, including Power Shell, WMI, and Win RM
- Use offensive tools such as Metasploit, Mimikatz, Veil, Burp Suite, and John the Ripper
- Exploit networks starting from malware and initial intrusion to privilege escalation through password cracking and persistence mechanisms
- Defend networks by developing operational awareness using auditd and Sysmon to analyze logs, and deploying defensive tools such as the Snort intrusion detection system, IPFire firewalls, and Mod Security web application firewalls
Who This Book Is For
This study guide is intended for everyone involved in or interested in cybersecurity operations (e.g., cybersecurity professionals, IT professionals, business professionals, and students)
İçerik tablosu
Chapter 1. System Setup.- Chapter 2. Basic Offense.- Chapter 3. Operational Awareness.- Chapter 4. DNS and BIND.- Chapter 5. Scanning the Network.- Chapter 6. Active Directory.- Chapter 7. Remote Windows Management.- Chapter 8. Attacking the Windows Domain.- Chapter 9. Privilege Escalation in Linux.- Chapter 10. Logging.- Chapter 11. Malware and Persistence.- Chapter 12. Defending the Windows Domain.- Chapter 13. Network Services.- Chapter 14. Apache and Mod Security.- Chapter 15. IIS and Mod Security.- Chapter 16. Web Attacks.- Chapter 17. Firewalls.- Chapter 18. My SQL and Maria DB.- Chapter 19. Snort.- Chapter 20. PHP.- Chapter 21. Web Applications.
Yazar hakkında
Mike O’Leary is a professor at Towson University and the founding director of the School of Emerging Technologies. He developed and teaches hands-on capstone courses in computer security for both undergraduate and graduate students. He has coached the Towson University Cyber Defense team to the finals of the National Collegiate Cyber Defense Competition in 2010, 2012, and 2014.Aynı yazardan daha fazla e-kitap / Editör
16.197 Bu kategorideki e-kitaplar
