Network Security Assessment: Know Your Network
- Downloads:1795
- Type:Epub+TxT+PDF+Mobi
- Create Date:2022-02-27 09:55:34
- Update Date:2025-09-06
- Status:finish
- Author:Chris McNab
- ISBN:149191095X
- Environment:PC/Android/iPhone/iPad/Kindle
- Download
Summary
How secure is your network? The best way to find out is to attack it, using the same tactics attackers employ to identify and exploit weaknesses。 With the third edition of this practical book, you'll learn how to perform network-based penetration testing in a structured manner。 Security expert Chris McNab demonstrates common vulnerabilities, and the steps you can take to identify them in your environment。
System complexity and attack surfaces continue to grow。 This book provides a process to help you mitigate risks posed to your network。 Each chapter includes a checklist summarizing attacker techniques, along with effective countermeasures you can use immediately。
Learn how to effectively test system components, including:
Common services such as SSH, FTP, Kerberos, SNMP, and LDAP
Microsoft services, including NetBIOS, SMB, RPC, and RDP
SMTP, POP3, and IMAP email services
IPsec and PPTP services that provide secure network access
TLS protocols and features providing transport security
Web server software, including Microsoft IIS, Apache, and Nginx
Frameworks including Rails, Django, Microsoft ASP。NET, and PHP
Database servers, storage protocols, and distributed key-value stores
System complexity and attack surfaces continue to grow。 This book provides a process to help you mitigate risks posed to your network。 Each chapter includes a checklist summarizing attacker techniques, along with effective countermeasures you can use immediately。
Learn how to effectively test system components, including:
Common services such as SSH, FTP, Kerberos, SNMP, and LDAP
Microsoft services, including NetBIOS, SMB, RPC, and RDP
SMTP, POP3, and IMAP email services
IPsec and PPTP services that provide secure network access
TLS protocols and features providing transport security
Web server software, including Microsoft IIS, Apache, and Nginx
Frameworks including Rails, Django, Microsoft ASP。NET, and PHP
Database servers, storage protocols, and distributed key-value stores
Reviews
Gonzalo Fernández-Victorio
,
The book is a guide that covers the full stack when you're trying to do security assesment in your network。 It is mainly offensive, more than defensive, but at the end of each chapter you can find a small guide on hardening that specific layer/app。The book is quite hands-on, with many commands, and lots of links。 So reading it on paper is not the best use of your time and/or money。 Also I was expecting something more theoretical, but it's full of details on specific technologies。All in all, it's The book is a guide that covers the full stack when you're trying to do security assesment in your network。 It is mainly offensive, more than defensive, but at the end of each chapter you can find a small guide on hardening that specific layer/app。The book is quite hands-on, with many commands, and lots of links。 So reading it on paper is not the best use of your time and/or money。 Also I was expecting something more theoretical, but it's full of details on specific technologies。All in all, it's a well-written book, but I was not the target。 。。。more
Freddie Barr-Smith
,
Legit
Joshua I。 James
,
First chapters were great。 Last few seemed to give up。
Bryan Schmidt
,
Easy read and good introduction to network security。 The content is outdated though and much of the information included is irrelevant to modern day pentesting
Epsilon
,
Although most of the tools related content is obsolete the book is still OK
عَبدُالكَرِيمْ
,
I found this book while searching for security protocols book。 I must say it wasn't a bad coincidence。 Expect to learn lot of tricks about networks。 By the end the book talk about local buffer overflow techniques。 This author knows what he is saying。 Warning: out dated (2007) but still very - very useful I found this book while searching for security protocols book。 I must say it wasn't a bad coincidence。 Expect to learn lot of tricks about networks。 By the end the book talk about local buffer overflow techniques。 This author knows what he is saying。 Warning: out dated (2007) but still very - very useful 。。。more
Cameron
,