網絡安全滲透測試與防護
王立進,張宗寶,張鎮
- 出版商: 電子工業
- 出版日期: 2024-11-01
- 定價: $263
- 售價: 7.9 折 $208
- 語言: 簡體中文
- 頁數: 224
- ISBN: 712148384X
- ISBN-13: 9787121483844
-
相關分類:
Penetration-test
立即出貨
買這商品的人也買了...
-
$301Python 黑客攻防入門 -
FLAG'S 創客‧自造者工作坊 -- 資安衛士 破解駭客戲法$1,599$1,439 -
CQRS 命令查詢職責分離模式 (Command Query Responsibility Segregation)$500$390 -
Oracle 19c 從入門到精通 (視頻教學超值版)$534$507 -
$213計算機組成原理 -
計算機組成原理:作業系統概論Ⅰ$560$370 -
計算機組成原理:作業系統概論Ⅱ$600$396 -
計算機組成原理:基礎知識揭密, 2/e$520$406 -
$356實用黑客攻防技術 -
絕對會 Python 用場! 驚人的程式妙用$680$537 -
$356Kali滲透測試技術標準教程(實戰微課版) -
$599Linux Shell 命令行及腳本編程實例詳解, 2/e -
APCS × Python 解題思路, 2/e$420$378 -
這樣寫 code 好不好?辨識、分析、改善,寫出易讀易維護的程式碼$630$536 -
為你自己學 Python$600$474 -
$469C和指針 -
$473Shell 從入門到精通, 2/e -
資安鑑識分析:數位工具、情資安全、犯罪偵防與證據追蹤$560$437 -
Vue.js 3 高階程式設計:UI 元件庫開發實戰$534$507 -
程式設計原來不只有寫 CODE!銜接學校與職場的五堂軟體開發實習課 = Beyond Just Coding: Five Essential Lessons from Classroom to Career in Software Development$700$546 -
大數據 SQL 優化 : 原理與實踐$594$564 -
圖說演算法 -- 使用 C語言, 3/e【暢銷回饋版】$560$437 -
一個人的藍隊:企業資安防護技術實戰指南(iThome鐵人賽系列書)$650$507 -
邊緣 AI - 使用 NVIDIA Jetson Orin Nano 開發具備深度學習、電腦視覺與生成式 AI 功能的 ROS2 機器人$580$458 -
你的第一本 Git 與 GitHub 入門書:輕鬆實作本機與遠端儲存庫的版本控制$620$434
中文年末書展|繁簡參展書2書75折 詳見活動內容 »
-
75折
為你寫的 Vue Components:從原子到系統,一步步用設計思維打造面面俱到的元件實戰力 (iThome 鐵人賽系列書)$780$585 -
75折
BDD in Action, 2/e (中文版)$960$720 -
75折
看不見的戰場:社群、AI 與企業資安危機$750$563 -
79折
AI 精準提問 × 高效應用:DeepSeek、ChatGPT、Claude、Gemini、Copilot 一本搞定$390$308 -
7折
超實用!Word.Excel.PowerPoint 辦公室 Office 365 省時高手必備 50招, 4/e (暢銷回饋版)$420$294 -
75折
裂縫碎光:資安數位生存戰$550$412 -
日本當代最強插畫 2025 : 150位當代最強畫師豪華作品集$640$576 -
79折
Google BI 解決方案:Looker Studio × AI 數據驅動行銷實作,完美整合 Google Analytics 4、Google Ads、ChatGPT、Gemini$630$498 -
79折
超有料 Plus!職場第一實用的 AI 工作術 - 用對 AI 工具、自動化 Agent, 讓生產力全面進化!$599$473 -
75折
從零開始學 Visual C# 2022 程式設計, 4/e (暢銷回饋版)$690$518 -
75折
Windows 11 制霸攻略:圖解 AI 與 Copilot 應用,輕鬆搞懂新手必學的 Windows 技巧$640$480 -
75折
精準駕馭 Word!論文寫作絕非難事 (好評回饋版)$480$360 -
Sam Yang 的插畫藝術:用 Procreate / PS 畫出最強男友視角 x 女孩美好日常$699$629 -
79折
AI 加持!Google Sheets 超級工作流$599$473 -
78折
想要 SSR? 快使用 Nuxt 吧!:Nuxt 讓 Vue.js 更好處理 SEO 搜尋引擎最佳化(iThome鐵人賽系列書)$780$608 -
78折
超實用!業務.總管.人資的辦公室 WORD 365 省時高手必備 50招 (第二版)$500$390 -
7折
Node-RED + YOLO + ESP32-CAM:AIoT 智慧物聯網與邊緣 AI 專題實戰$680$476 -
79折
「生成式⇄AI」:52 個零程式互動體驗,打造新世代人工智慧素養$599$473 -
7折
Windows APT Warfare:惡意程式前線戰術指南, 3/e$720$504 -
75折
我輩程式人:回顧從 Ada 到 AI 這條程式路,程式人如何改變世界的歷史與未來展望 (We, Programmers: A Chronicle of Coders from Ada to AI)$850$637 -
75折
不用自己寫!用 GitHub Copilot 搞定 LLM 應用開發$600$450 -
79折
Tensorflow 接班王者:Google JAX 深度學習又快又強大 (好評回饋版)$780$616 -
79折
GPT4 會你也會 - 共融機器人的多模態互動式情感分析 (好評回饋版)$700$553 -
79折
技術士技能檢定 電腦軟體應用丙級術科解題教本|Office 2021$460$363 -
75折
Notion 與 Notion AI 全能實戰手冊:生活、學習與職場的智慧策略 (暢銷回饋版)$560$420
相關主題
商品描述
本書根據網絡安全服務工程師的技能要求及網絡安全管理與評估賽項規範,以網絡安全服務工程師的工作情景為主線進行邊寫 ,內容包括搭建網絡攻防環境、信息收集與漏洞掃描、 LINUX系統滲透測試與加固、 WINDOWS系統滲透測試與加固、數據庫系統滲透測試與加固、信息系統應急響應、 Web系統安全性測試、無線網絡安全性測試。本書內容針對性、適用性強,在同類高職院校網絡安全類類教材中是一部具有先進性的"崗課賽證融通”教材。
目錄大綱
項目一 滲透測試環境搭建 ·······································································.1
1.1 項目情境 ······················································································.2
1.2 項目任務 ······················································································.3
任務 1-1 安裝與配置 Kali Linux 操作機 ··············································.3
任務 1-2 安裝與管理 Kali Linux 軟件 ················································.21
任務 1-3 安裝與配置 Linux 靶機 ······················································.26
任務 1-4 安裝與配置 Windows 靶機 ··················································.30
1.3 項目拓展——滲透測試方法論 ··························································.45
1.4 練習題 ························································································.48
項目二 信息收集與漏洞掃描 ···································································.50
2.1 項目情境 ·····················································································.51
2.2 項目任務 ·····················································································.51
任務 2-1 通過公開網站收集信息 ·····················································.51
任務 2-2 使用 Nmap 工具收集信息 ··················································.56
任務 2-3 使用 Nmap 工具掃描漏洞 ··················································.61
任務 2-4 使用 Nessus 工具掃描漏洞 ·················································.65
任務 2-5 檢查主機弱口令 ······························································.74
2.3 項目拓展——深入認識漏洞 ·····························································.78
2.4 練習題 ························································································.79
網絡安全 滲透測試與防護
VI
項目三 Linux 操作系統滲透測試與加固 ·····················································.81
3.1 項目情境 ·····················································································.82
3.2 項目任務 ·····················································································.82
任務 3-1 利用 vsFTPd 後門漏洞進行滲透測試 ····································.82
任務 3-2 利用 Samba MS-RPC Shell 命令註入漏洞進行滲透測試 ·················.87
任務 3-3 利用 Samba Sysmlink 默認配置目錄遍歷漏洞進行滲透測試 ··········.90
任務 3-4 利用臟牛漏洞提升權限 ·····················································.94
任務 3-5 Linux 操作系統安全加固 ····················································.97
3.3 項目拓展——臟牛漏洞利用思路解析 ···············································.101
3.4 練習題 ······················································································.102
項目四 Windows 操作系統滲透測試與加固 ··············································.104
4.1 項目情境 ···················································································.105
4.2 項目任務 ···················································································.105
任務 4-1 利用 MS17_010_externalblue 漏洞進行滲透測試 ····················.105
任務 4-2 利用 CVE-2019-0708 漏洞進行滲透測試 ······························.113
任務 4-3 利用 Trusted Service Paths 漏洞提權 ····································.117
任務 4-4 社會工程學攻擊測試 ······················································.123
任務 4-5 利用 CVE-2020-0796 漏洞進行滲透測試 ······························.126
任務 4-6 Windows 操作系統安全加固 ·············································.133
4.3 項目拓展——社會工程學工具包 ·····················································.144
4.4 練習題 ······················································································.145
項目五 數據庫系統滲透測試與加固 ························································.147
5.1 項目情境 ···················································································.148
5.2 項目任務 ···················································································.148
任務 5-1 暴力破解 MySQL 弱口令 ·················································.148
任務 5-2 利用 UDF 對 MySQL 數據庫提權 ·······································.153
任務 5-3 利用弱口令對 SQL Server 數據庫進行滲透測試 ····················.159
目錄
VII
任務 5-4 利用 SQL Server 數據庫的 xp_cmdshell 組件提權 ···················.163
任務 5-5 數據庫系統安全加固 ······················································.167
5.3 項目拓展——MySQL 數據庫權限深入解析 ········································.172
5.4 練習題 ······················································································.174
項目六 無線網絡滲透測試與加固 ···························································.176
6.1 項目情境 ···················································································.177
6.2 項目任務 ···················································································.177
任務 6-1 無線網絡嗅探 ·······························································.177
任務 6-2 破解 WEP 加密的無線網絡 ··············································.182
任務 6-3 對 WPS 滲透測試 ···························································.186
任務 6-4 偽造釣魚熱點獲取密碼 ···················································.189
任務 6-5 無線網絡安全加固 ·························································.198
6.3 項目拓展——WiFi 加密算法 ··························································.201
6.4 練習題 ······················································································.202
項目七 滲透測試報告撰寫與溝通匯報 ·····················································.205
7.1 項目情境 ···················································································.206
7.2 項目任務 ···················································································.206
任務 7-1 滲透測試報告撰寫 ·························································.206
任務 7-2 項目溝通匯報 ·······························································.211
7.3 項目拓展-問題回答技巧 ·······························································.212
7.4 練習題 ······················································································.213
參考文獻 ····························································································.215
嚴正聲明 ····························································································.216
.jpg)
