Red Team Engineering: The Art of Building Offensive Tools and Infrastructure (Paperback)
暫譯: 紅隊工程:攻擊工具與基礎設施建設的藝術 (平裝本)
Erdmann, Casey
- 出版商: No Starch Press
- 出版日期: 2026-03-24
- 售價: $2,700
- 貴賓價: 9.5 折 $2,565
- 語言: 英文
- 頁數: 352
- 裝訂: Quality Paper - also called trade paper
- ISBN: 1718504268
- ISBN-13: 9781718504264
-
相關分類:
Penetration-test
立即出貨 (庫存=1)
買這商品的人也買了...
-
CCNA 網路認證先修班 (Understanding Cisco Networking Technologies, Volume 1: Exam 200-301 (CCNA Certification))$620$527 -
網絡安全防禦實戰 — 藍軍武器庫$408$387 -
CCNA 網路認證教戰手冊 EXAM 200-301 (CCNA Certification Study Guide, Volume 2:Exam 200-301)$1,200$1,020 -
Comptia Security+ Certification Kit: Exam Sy0-701 (Paperback)$2,700$2,565 -
究極 Web 資安心智圖學習法!嚴選12大主題 × 7張心智圖 × 7個實戰,核心技能無痛升級(iThome鐵人賽系列書)$620$409 -
LLM 工程師開發手冊 (LLM Engineer's Handbook: Master the art of engineering large language models from concept to production)$1,250$987
商品描述
Stop Relying on Black Box Tools and Start Building Your Own.
Offensive security isn't just about running scripts; it's about implementing engineering solutions. Red Team Engineering will show you how to transition from penetration tester to red team operator--taking you beyond the basics of exploitation to teach you the "how" of professional offensive development and infrastructure engineering.
Casey Erdmann, an experienced red team operator, guides you through the complete development life cycle of a modern cyber operation. Using a project-based approach, you'll engineer a complete offensive arsenal as you:
- Build full-stack credential harvesting apps with HTML, JavaScript, PHP, and MySQL.
- Create brute-force and password-spraying tools in Python to attack SMB services.
- Use Go to craft custom ransomware with encryption/decryption logic.
- Abandon manual server setups for reproducible, disposable infrastructure.
- Deploy C2 servers, redirectors, and phishing infrastructure on AWS.
You'll also learn how to:
- Tunnel through firewalls with reverse VPNs using OpenVPN and PiVPN.
- Manage fleet configurations at scale with Salt Project.
- Simulate execution of end-to-end scenarios like deploying a physical "dropbox."
Whether your goal is to understand the enemy or to level up your penetration testing skills, Red Team Engineering will show you how to build professional-grade hacking tools that get the job done.
商品描述(中文翻譯)
**停止依賴黑箱工具,開始建立自己的工具。**
攻擊性安全不僅僅是執行腳本;它是關於實施工程解決方案。《Red Team Engineering》將向您展示如何從滲透測試者轉變為紅隊操作員——帶您超越基本的利用技術,教您專業攻擊開發和基礎設施工程的「如何」。
經驗豐富的紅隊操作員 Casey Erdmann 將引導您完成現代網路攻擊的完整開發生命週期。透過專案導向的方法,您將在以下過程中設計一套完整的攻擊武器庫:
- 使用 HTML、JavaScript、PHP 和 MySQL 建立全棧的憑證收集應用程式。
- 使用 Python 創建暴力破解和密碼噴灑工具以攻擊 SMB 服務。
- 使用 Go 編寫自訂的勒索病毒,包含加密/解密邏輯。
- 拋棄手動伺服器設置,轉向可重複使用的、一次性基礎設施。
- 在 AWS 上部署 C2 伺服器、重定向器和釣魚基礎設施。
您還將學習如何:
- 使用 OpenVPN 和 PiVPN 通過防火牆建立反向 VPN 隧道。
- 使用 Salt Project 大規模管理車隊配置。
- 模擬端到端場景的執行,例如部署實體的「Dropbox」。
無論您的目標是了解敵人還是提升您的滲透測試技能,《Red Team Engineering》將向您展示如何建立專業級的駭客工具,讓您完成任務。
作者簡介
Casey Erdmann specializes in custom tool development and post-exploitation. A "hacker's hacker," he focuses on finding creative ways to make systems work in unintended ways. Erdmann is the founder of Injection Software and Security, LLC, and the creator of popular online courses as well as tools and exploits used by teams all over the world.
作者簡介(中文翻譯)
Casey Erdmann 專注於自訂工具開發和後期利用。他是一位「駭客中的駭客」,專注於尋找創造性的方法使系統以意想不到的方式運作。Erdmann 是 Injection Software and Security, LLC 的創辦人,也是受全球團隊使用的熱門線上課程、工具和漏洞的創作者。
