Web Penetration Testing with Kali Linux, 2/e(Paperback)
暫譯: Kali Linux 網頁滲透測試,第二版(平裝本)

Juned Ahmed Ansari

Web Penetration Testing with Kali Linux, 2/e(Paperback)
  • 出版商: Packt Publishing
  • 出版日期: 2015-11-30
  • 售價: $1,950
  • 貴賓價: 9.5$1,853
  • 語言: 英文
  • 頁數: 292
  • 裝訂: Paperback
  • ISBN: 1783988525
  • ISBN-13: 9781783988525
  • 相關分類: kali-linux

    • 海外代購書籍(需單獨結帳)

買這商品的人也買了...

相關主題

商品描述

Build your defense against web attacks with Kali Sana

About This Book

  • Gain a deep understanding of the flaws in web applications and exploit them in a practical manner
  • Get hands-on web application hacking experience with a range of tools in Kali Sana
  • Develop the practical skills required to master multiple tools in the Kali Sana toolkit

Who This Book Is For

If you are already working as a network penetration tester and want to expand your knowledge of web application hacking, then this book tailored for you. Those who are interested in learning more about the Kali Sana tools that are used to test web applications will find this book a thoroughly useful and interesting guide.

What You Will Learn

  • Set up your lab with Kali Sana
  • Identify the difference between hacking a web application and network hacking
  • Understand the different techniques used to identify the flavor of web applications
  • Expose vulnerabilities present in web servers and their applications using server-side attacks
  • Use SQL and cross-site scripting (XSS) attacks
  • Check for XSS flaws using the burp suite proxy
  • Find out about the mitigation techniques used to negate the effects of the Injection and Blind SQL attacks

In Detail

Kali Sana is the new generation of the industry-leading BackTrack Linux penetration testing and security auditing Linux distribution. It contains several hundred tools aimed at various information security tasks such as penetration testing, forensics, and reverse engineering.

At the beginning of the book, you will be introduced to the concepts of hacking and penetration testing and will get to know about the tools used in Kali Sana that relate to web application hacking. Then, you will gain a deep understanding of SQL and command injection flaws and ways to exploit the flaws. Moving on, you will get to know more about scripting and input validation flaws, AJAX, and the security issues related to AJAX.

At the end of the book, you will use an automated technique called fuzzing to be able to identify flaws in a web application. Finally, you will understand the web application vulnerabilities and the ways in which they can be exploited using the tools in Kali Sana.

商品描述(中文翻譯)

**建立您對網路攻擊的防禦,使用 Kali Sana**

## 本書介紹

- 深入了解網路應用程式中的缺陷並以實際方式利用它們
- 使用 Kali Sana 中的一系列工具獲得實際的網路應用程式駭客經驗
- 發展掌握 Kali Sana 工具包中多種工具所需的實用技能

## 本書適合誰

如果您已經在擔任網路滲透測試員並希望擴展對網路應用程式駭客的知識,那麼這本書就是為您量身定做的。對於那些有興趣了解更多用於測試網路應用程式的 Kali Sana 工具的人來說,這本書將是一本非常有用且有趣的指南。

## 您將學到什麼

- 使用 Kali Sana 設置您的實驗室
- 確定駭客攻擊網路應用程式與網路駭客攻擊之間的區別
- 了解用於識別網路應用程式類型的不同技術
- 使用伺服器端攻擊揭露網路伺服器及其應用程式中的漏洞
- 使用 SQL 和跨站腳本 (XSS) 攻擊
- 使用 burp suite 代理檢查 XSS 缺陷
- 了解用於消除注入和盲 SQL 攻擊影響的緩解技術

## 詳細內容

Kali Sana 是業界領先的 BackTrack Linux 滲透測試和安全審計 Linux 發行版的新一代。它包含數百種針對各種信息安全任務(如滲透測試、取證和逆向工程)的工具。

在本書的開頭,您將了解駭客和滲透測試的概念,並認識與網路應用程式駭客相關的 Kali Sana 工具。接著,您將深入了解 SQL 和命令注入缺陷及其利用方式。隨後,您將進一步了解腳本和輸入驗證缺陷、AJAX 以及與 AJAX 相關的安全問題。

在本書的最後,您將使用一種稱為模糊測試的自動化技術來識別網路應用程式中的缺陷。最後,您將了解網路應用程式的漏洞及其如何利用 Kali Sana 中的工具進行攻擊。

類似商品

最後瀏覽商品 (3)