Conducting Network Penetration and Espionage in a Global Environment
When it?s all said and done, penetration testing remains the most effective way to identify security vulnerabilities in computer networks. Conducting Network Penetration and Espionage in a Global Environment provides detailed guidance on how to perform effective penetration testing of computer networks?using free, open source, and commercially available tools, including Backtrack, Metasploit, Wireshark, Nmap, Netcat, and Nessus. It also considers exploits and other programs using Python, PERL, BASH, PHP, Ruby, and Windows PowerShell.
The book taps into Bruce Middleton?s decades of experience with computer security, including penetration testing of military networks, the White House, utilities, manufacturing facilities, CIA headquarters, the Defense Information Systems Agency, and NASA. Mr. Middleton begins with a chapter on defensive measures/privacy issues and then moves on to describe a cyber-attack on one of his labs and how he responded to the attack.
Next, the book explains how to research a target without directly "touching" that target. Once you?ve learned all you can, the text describes how to gather even more information using a more direct approach. From there, it covers mathematical analysis, considers target exploitation, and discusses Chinese and Syrian cyber-attacks.
Providing authoritative guidance on cyberforensics, reverse engineering, and penetration testing, the book categorizes testing tools according to their use within the standard penetration testing framework. For each of the above-mentioned categories, you will find basic and advanced tools and procedures to help you identify security vulnerabilities in today?s networks.
After reading this book, you will understand how to perform an organized and efficient penetration test. You will also learn techniques used to bypass anti-virus software and capture keystrokes of remote systems. Explaining how to put together your own penetration testing lab, the text concludes by describing how to utilize various iPhone apps to perform reconnaissance activities on wireless networks.
What You Need to Know First. Attack from Christmas Island. Indirect Target Information Acquisition. Direct Target Information Acquisition. Nmap. MatLab, SimuLink, and R. Metasploit Pro. China, Syria, and the American Intelligence Community. Building a Penetration Testing Lab. Vendor Default Passwords and Default Unix Ports. Oldies but Goodies if You Have Physical Access. Order of Operations for Your Tools. Using Your iPhone as a Network Scanner.
Bruce Middleton is a graduate of the University of Houston and has been involved with the security of electronic communications systems since 1972, when he enlisted in the military (U.S. Army Security Agency) during the Vietnam conflict and worked overseas in the field for NSA. Since that time he has worked with various government, military, and commercial entities such as NASA (Space Station Freedom communications systems design team), CIA, NAVSEA, and Boeing (ground station-to-aircraft communications systems).
Mr. Middleton has been the keynote speaker at select national and international industry events and a trusted advisor in both the government and commercial sectors. He has written multiple books, e-books, and magazine articles in the fields of communications security, cybercrime, and computer network penetration.
Date de parution : 05-2014
15.6x23.4 cm
Date de parution : 09-2018
15.6x23.4 cm
Disponible chez l'éditeur (délai d'approvisionnement : 14 jours).
Prix indicatif 68,67 €
Ajouter au panierMots-clés :
IP Address; Pen Testing; Recommended Defensive Measures; TCP; Attack from Christmas Island; CIDR; Indirect Target Information Acquisition (ITIA); LAN; Direct Target Information Acquisition (DTIA); Penetration Test; MatLab; SimuLink; and R; Nmap Scan; SOA; DNS Server; Ftp Server; Authoritative DNS Server; Guess Probability; Network Router; TCP SYN; Mac Address; Server TCP; Zip Drive; MD5 Digest; Slack Space; Ping Device; Shenyang Military Region; CWD; Tcp Packet; TCP Ack; UDP Scan