|
|
| Book details / order |
| BACKTRACK 4: ASSURING SECURITY BY PENETRATION TESTING MASTER THE ART OF PENETRATION TESTING WITH BACKTRACK |
Backtrack is a penetration testing and security auditing platform with advanced tools to identify, detect, and exploit any vulnerabilities uncovered in the target network environment. applying appropriate testing methodology with defined business objectives and a scheduled test plan will result in robust penetration testing of your network.
backtrack 4: assuring security by penetration testing is a fully focused, structured book providing guidance on developing practical penetration testing skills by demonstrating the cutting-edge hacker tools and techniques in a coherent step-by-step strategy. it offers all the essential lab preparation and testing procedures to reflect real-world attack scenarios from your business perspective in today's digital age.
the authors' experience and expertise enables them to reveal the industry's best approach for logical and systematic penetration testing.
the first and so far only book on backtrack os starts with lab preparation and testing procedures, explaining the basic installation and configuration set up, discussing types of penetration testing (black-box and white-box), uncovering open security testing methodologies, and proposing the backtrack specific testing process. the authors discuss a number of security assessment tools necessary to conduct penetration testing in their respective categories (target scoping, information gathering, discovery, enumeration, vulnerability mapping, social engineering, exploitation, privilege escalation, maintaining access, and reporting), following the formal testing methodology. each of these tools is illustrated with real-world examples to highlight their practical usage and proven configuration techniques. the authors also provide extra weaponry treasures and cite key resources that may be crucial to any professional penetration tester.
this book serves as a single professional, practical, and expert guide to developing hardcore penetration testing skills from scratch. you will be trained to make the best use of backtrack os either in a commercial environment or an experimental test bed.
a tactical example-driven guide for mastering the penetration testing skills with backtrack to identify, detect, and exploit vulnerabilities at your digital doorstep.
what you will learn from this book :
initiate the backtrack os environment in your test lab by installing, configuring, running, and updating its core system components
draw a formal backtrack testing methodology
scope your target with definitive test requirements, limitations, and business objectives, and schedule the test plan
gain practical experience with a number of security tools from backtrack logically divided into sub-categories of testing methodology
practice the process of reconnaissance, discovery, enumeration, vulnerability mapping, social engineering, exploitation, privilege escalation, and maintaining access to your target for evaluation purposes
document, report, and present your verified test results to the relevant authorities in a formal reporting structure
assess the various technologies comprising your target information system's environment, such as web applications, network administration servers, workstations, cisco devices, firewalls, load balancers, routers, switches, intrusion detection and prevention devices, and many more
examine and research the vulnerability in greater detail before attempting to exploit it by taking control of the target, thus reducing any false positives
exploit human vulnerability by wrapping yourself with the art of deception to acquire the target
approach
written as an interactive tutorial, this book covers the core of backtrack with real-world examples and step-by-step instructions to provide professional guidelines and recommendations to you. the book is designed in a simple and intuitive manner, which allows you to explore the whole backtrack testing process or study parts of it individually.
who this book is written for
if you are an it security professional or network administrator who has a basic knowledge of unix/linux operating systems including awareness of information security factors, and you want to use backtrack for penetration testing, then this book is for you.
about the authors
shakeel ali is a main founder and cto of cipher storm ltd, uk. his expertise in the security industry markedly exceeds the standard number of security assessments, compliance, governance, and forensic projects that he carries in day-to-day operations. as a senior security evangelist and having spent endless nights without taking a nap, he provides constant security support to various businesses and government institutions globally. he is an active independent researcher who writes various articles, whitepapers, and manages a blog at ethical-hacker.net. he regularly participates in bugcon security conferences, mexico, to highlight the best-of-breed cyber security threats and their solutions from practically driven countermeasures.
tedi heriyanto currently works as a senior technical consultant in an indonesian information technology company. he has worked with several well-known institutions in indonesia and overseas, in designing secure network architecture, deploying and managing enterprise-wide security systems, developing information security policies and procedures, doing information security audit and assessment, and giving information security awareness training. in his spare times, he manages to research, write various articles, participate in indonesian security community activities, and maintain a blog site. he has shared his knowledge in information security by writing several information security and computer programming books.
-----------------------------------------------------------------------------------------------------------
part i: lab preparation and testing procedures
chapter 1: beginning with backtrack
chapter 2: penetration testing methodology
part ii: penetration testers armory
chapter 3: target scoping
chapter 4: information gathering
chapter 5: target discovery
chapter 6: enumerating target
chapter 7: vulnerability mapping
chapter 8: social engineering
chapter 9: target exploitation
chapter 10: privilege escalation
chapter 11: maintaining access
chapter 12: documentation and reporting
part iii: extra ammunition
appendix a: supplementary tools
appendix b: key resources
Author : Shakeel ali, tedi heriyanto
Publication : Packt publication
Isbn : 9789350234976
Store book number : 109
NRS 1000.00
|
 |
|
|
|
|
|
|
|
| |
|
|
