Web Penetration Testing with Kali Linux et plus d'un million d'autres livres sont disponibles pour le Kindle d'Amazon. En savoir plus
EUR 41,13
  • Tous les prix incluent la TVA.
En stock.
Expédié et vendu par Amazon.
Emballage cadeau disponible.
Quantité :1
Web Penetration Testing w... a été ajouté à votre Panier
Vous l'avez déjà ?
Repliez vers l'arrière Repliez vers l'avant
Ecoutez Lecture en cours... Interrompu   Vous écoutez un extrait de l'édition audio Audible
En savoir plus
Voir les 2 images

Web Penetration Testing with Kali Linux (Anglais) Broché – 25 septembre 2013


Voir les 2 formats et éditions Masquer les autres formats et éditions
Prix Amazon Neuf à partir de Occasion à partir de
Format Kindle
"Veuillez réessayer"
Broché
"Veuillez réessayer"
EUR 41,13
EUR 41,13 EUR 43,13

Offres spéciales et liens associés


Produits fréquemment achetés ensemble

Web Penetration Testing with Kali Linux + Metasploit Sécurité & hacking - Le guide du pentesteur
Prix pour les deux : EUR 76,13

Acheter les articles sélectionnés ensemble


Descriptions du produit

Présentation de l'éditeur

Testing web security is best done through simulating an attack. Kali Linux lets you do this to professional standards and this is the book you need to be fully up-to-speed with this powerful open-source toolkit.

Overview

  • Learn key reconnaissance concepts needed as a penetration tester
  • Attack and exploit key features, authentication, and sessions on web applications
  • Learn how to protect systems, write reports, and sell web penetration testing services

In Detail

Kali Linux is built for professional penetration testing and security auditing. It is the next-generation of BackTrack, the most popular open-source penetration toolkit in the world. Readers will learn how to think like real attackers, exploit systems, and expose vulnerabilities.

Even though web applications are developed in a very secure environment and have an intrusion detection system and firewall in place to detect and prevent any malicious activity, open ports are a pre-requisite for conducting online business. These ports serve as an open door for attackers to attack these applications. As a result, penetration testing becomes essential to test the integrity of web-applications. Web Penetration Testing with Kali Linux is a hands-on guide that will give you step-by-step methods on finding vulnerabilities and exploiting web applications.

"Web Penetration Testing with Kali Linux" looks at the aspects of web penetration testing from the mind of an attacker. It provides real-world, practical step-by-step instructions on how to perform web penetration testing exercises.

You will learn how to use network reconnaissance to pick your targets and gather information. Then, you will use server-side attacks to expose vulnerabilities in web servers and their applications. Client attacks will exploit the way end users use web applications and their workstations. You will also learn how to use open source tools to write reports and get tips on how to sell penetration tests and look out for common pitfalls.

On the completion of this book, you will have the skills needed to use Kali Linux for web penetration tests and expose vulnerabilities on web applications and clients that access them.

What you will learn from this book

  • Perform vulnerability reconnaissance to gather information on your targets
  • Expose server vulnerabilities and take advantage of them to gain privileged access
  • Exploit client-based systems using web application protocols
  • Learn how to use SQL and cross-site scripting (XSS) attacks
  • Steal authentications through session hijacking techniques
  • Harden systems so other attackers do not exploit them easily
  • Generate reports for penetration testers
  • Learn tips and trade secrets from real world penetration testers

Approach

"Web Penetration Testing with Kali Linux" contains various penetration testing methods using BackTrack that will be used by the reader. It contains clear step-by-step instructions with lot of screenshots. It is written in an easy to understand language which will further simplify the understanding for the user.

Biographie de l'auteur

Joseph Muniz

Joseph Muniz is a technical solutions architect and security researcher. He started his career in software development and later managed networks as a contracted technical resource. Joseph moved into consulting and found a passion for security while meeting with a variety of customers. He has been involved with the design and implementation of multiple projects ranging from Fortune 500 corporations to large federal network.

Joseph runs TheSecurityBlogger.com website, a popular resources regarding security and product implementation. You can also find Joseph speaking at live events as well as involved with other publications. Recent events include speaker for Social Media Deception at the 2013 ASIS International conference, speaker for Eliminate Network Blind Spots with Data Center Security webinar, speaker for Making Bring Your Own Device (BYOD) Work at the Government Solutions Forum, Washington DC, and an article on Compromising Passwords in PenTest Magazine - Backtrack Compendium, July 2013.

Outside of work, he can be found behind turntables scratching classic vinyl or on the soccer pitch hacking away at the local club teams.



Aamir Lakhani

Aamir Lakhani is a leading Cyber Security and Cyber Counterintelligence architect. He is responsible for providing IT security solutions to major commercial and federal enterprise organizations.

Lakhani leads projects that implement security postures for Fortune 500 companies, the US Department of Defense, major healthcare providers, educational institutions, and financial and media organizations. Lakhani has designed offensive counter defense measures for defense and intelligence agencies, and has assisted organizations in defending themselves from active strike back attacks perpetrated by underground cyber groups. Lakhani is considered an industry leader in support of detailed architectural engagements and projects on topics related to cyber defense, mobile application threats, malware, and Advanced Persistent Threat (APT) research, and Dark Security. Lakhani is the author and contributor of several books, and has appeared on National Public Radio as an expert on Cyber Security.

Writing under the pseudonym Dr. Chaos, Lakhani also operates the DrChaos.com blog. In their recent list of 46 Federal Technology Experts to Follow on Twitter, Forbes magazine described Aamir Lakhani as "a blogger, infosec specialist, superhero..., and all around good guy."



Détails sur le produit


Quels sont les autres articles que les clients achètent après avoir regardé cet article?

Commentaires en ligne

Il n'y a pas encore de commentaires clients sur Amazon.fr
5 étoiles
4 étoiles
3 étoiles
2 étoiles
1 étoiles

Commentaires client les plus utiles sur Amazon.com (beta)

Amazon.com: 8 commentaires
10 internautes sur 11 ont trouvé ce commentaire utile 
Lacks the specialization it advertises 23 décembre 2013
Par M. Lewis - Publié sur Amazon.com
Format: Format Kindle
This book was a quick read for people familiar with penetration testing in general because there was very little specialization beyond the generalities of the discipline. My specialty is network penetration testing and I'm weaker on the Web app side of things. I was hoping for an in-depth study into what the title advertises, Web penetration with Kali. Instead, the book reads more like a very high level survey of tools available to a Web penetration tester. More time was spent on how to install, configure, and run the tools than on how Web pentesters use them in attacks.

A large portion of the content was padded with screenshots and step-by-step instructions on how to get the tools up and running. Most of the first half of the book covers pretty standard fare on what penetration testers do regardless of their focus, like recon, social engineering, and cracking passwords. Nothing I'd call Web-specific attacks. And at the end, an unexpectedly out of place diversion to file system forensics eats up a chapter as well. Doesn't do anything to help you with Web-based attacks, and is far too brief and summarized to help you with forensics.

I learned far more about the guts of Web application penetration testing; what the attack vectors are, how they work, what they look like, and which tools to use, from the OWASP Testing Guide.
Good book for beginners 27 mars 2014
Par Rafal Zdziech - Publié sur Amazon.com
Format: Broché
There is no a perfect book for anything :). The good is good for people no familiar with the subject. Give you ability to learn more about kali Linux. You don't have to be expert in this field or have a degree in IT to be able to understand content of this bookm
1 internautes sur 2 ont trouvé ce commentaire utile 
Web Penetration Testing with Kali Linux 7 mars 2014
Par Bandit R. - Publié sur Amazon.com
Format: Format Kindle Achat vérifié
The book is good for beginner Penetration Testers. It gives brief details on the tools on Kali Linux. Unfortunately the authors wrote about tools that were not on Kali Linux. I was hoping for details on the Kali Linux tools
0 internautes sur 1 ont trouvé ce commentaire utile 
Perfect for beginners 27 janvier 2014
Par J. Gongora - Publié sur Amazon.com
Format: Broché
This book is very usefull for a beginner, it'll help you to realize a pentest from A to Z.
This book respects a real pentest methodology used by pentesters.
Everything is clearly explained, step by step.
This book is my new arm for my next pentests :-)
Five Stars 9 octobre 2014
Par Dr.$am - Publié sur Amazon.com
Format: Broché Achat vérifié
Good
Ces commentaires ont-ils été utiles ? Dites-le-nous

Rechercher des articles similaires par rubrique


Commentaires

Souhaitez-vous compléter ou améliorer les informations sur ce produit ? Ou faire modifier les images?