Confiure the most effective Kali Linux tools to test infrastructure security Employ stealth to avoid detection in the infrastructure being tested Recognize when stealth attacks are being used against your infrastructure Exploit networks and data systems using wired and wireless networks as well as web services Identify and download valuable data from target systems Maintain access to compromised systems Use social engineering to compromise the weakest part of the network - the end users This book takes you, as a tester or security practitioner, through the reconnaissance, vulnerability assessment, exploitation, privilege escalation, and post-exploitation activities used by pentesters. To start with, you'll use a laboratory environment to validate tools and techniques, along with an application that supports a collaborative approach for pentesting. You'll then progress to passive reconnaissance with open source intelligence and active reconnaissance of the external and internal infrastructure. You'll also focus on how to select, use, customize, and interpret the results from different vulnerability scanners, followed by examining specific routes to the target, which include bypassing physical security and the exfiltration of data using a variety of techniques. You'll discover concepts such as social engineering, attacking wireless networks, web services, and embedded devices. Once you are confident with these topics, you'll learn the practical aspects of attacking user client systems by backdooring with fileless techniques, followed by focusing on the most vulnerable part of the network – directly attacking the end user. By the end of this book, you'll have explored approaches for carrying out advanced pentesting in tightly secured environments, understood pentesting and hacking techniques employed on embedded peripheral devices. Employ advanced pentesting techniques with Kali Linux to build highly secured systems Discover various stealth techniques to remain undetected and defeat modern infrastructures Explore red teaming techniques to exploit secured environment Table of contents 1 Goal-Based Penetration Testing Conceptual overview of security testing Misconceptions of vulnerability scanning, penetration testing, and red team exercises Objective-based penetration testing The testing methodology Introduction to Kali Linux – features Installing and updating Kali Linux Organizing Kali Linux Building a verification lab Managing collaborative penetration testing using Faraday Summary 2 Open Source Intelligence and Passive Reconnaissance Basic principles of reconnaissance Google Hacking Database Creating custom wordlists for cracking passwords Summary 3 Active Reconnaissance of External and Internal Networks Stealth scanning strategies DNS reconnaissance and route mapping Employing comprehensive reconnaissance applications Identifying the external network infrastructure Mapping beyond the firewall IDS/IPS identification Enumerating hosts Port, operating system, and service discovery Writing your own port scanner using netcat Large-scale scanning Summary 4 Vulnerability Assessment Vulnerability nomenclature Local and online vulnerability databases Vulnerability scanning with Nmap Web application vulnerability scanners Vulnerability scanners for mobile applications The OpenVAS network vulnerability scanner Commercial vulnerability scanners Specialized scanners Threat modeling Summary 5 Advanced Social Engineering and Physical Security Methodology and attack methods Physical attacks at the console Creating a rogue physical device The Social Engineering Toolkit (SET) Hiding executables and obfuscating the attacker's URL Escalating an attack using DNS redirection Launching a phishing attack Using bulk transfer as a mode of phishing Summary 6 Wireless Attacks Configuring Kali for wireless attacks Wireless reconnaissance Bypassing a hidden SSID Bypassing the MAC address authentication and open authentication Attacking WPA and WPA2 Denial-of-service (DoS) attacks against wireless communications Compromising enterprise implementations of WPA/WPA2 Working with Ghost Phisher Summary 7 Exploiting Web-Based Applications Web application hacking methodology The hacker's mind map Reconnaissance of web apps Client-side proxies Application-specific attacks Summary 8 Client-Side Exploitation Backdooring executable files Attacking a system using hostile scripts The Cross-Site Scripting framework The Browser Exploitation Framework (BeEF) Understanding BeEF Browser Summary 9 Bypassing Security Controls Bypassing Network Access Control (NAC) Bypassing the antivirus with files Going fileless and evading antivirus Bypassing application-level controls Bypassing Windows operating system controls Summary 10 Exploitation The Metasploit Framework Exploiting targets using MSF Exploiting multiple targets using MSF resource files Exploiting multiple targets with Armitage Using public exploits Developing a Windows exploit Summary 11 Action on the Objective and Lateral Movement Activities on the compromised local system Horizontal escalation and lateral movement Summary 12 Privilege Escalation Overview of the common escalation methodology Escalating from domain user to system administrator Local system escalation Escalating from administrator to system Credential harvesting and escalation attacks Escalating access rights in Active Directory Compromising Kerberos – the golden-ticket attack Summary 13 Command and Control Persistence Using persistent agents Domain fronting Exfiltration of data Hiding evidence of an attack Summary 14 Embedded Devices and RFID Hacking Embedded systems and hardware architecture Firmware unpacking and updating Introduction to RouterSploit Framework UART Cloning RFID using Chameleon Mini Summary

A practical, actionable handbook. Not just a call to arms about treating security seriously as a design activity...it also provides a raft of real examples, worked through from design considerations to actual code listings. From the Foreword by Daniel Terhorst-North Secure by Design teaches developers how to use design to drive security in software development. This book is full of patterns, best practices, and mindsets that you can directly apply to your real world development. You'll also learn to spot weaknesses in legacy code and how to address them. Part 1: Introduction 1 Why design matters for security 1.1 Security is a concern, not a feature 1.1.1 The robbery of Öst-Götha Bank, 1854 1.1.2 Security features and concerns 1.1.3 Categorizing security concerns: CIA-T 1.2 Defining design 1.3 The traditional approach to software security and its shortcomings 1.3.1 Explicitly thinking about security 1.3.2 Everyone is a security expert 1.3.3 Knowing all and the unknowable 1.4 Driving security through design 1.4.1 Making the user secure by design 1.4.2 The advantages of the design approach 1.4.3 Staying eclectic 1.5 Dealing with strings, XML, and a billion laughs 1.5.1 Extensible Markup Language (XML) 1.5.2 Internal XML entities in a nutshell 1.5.3 The Billion Laughs attack 1.5.4 Configuring the XML parser 1.5.5 Applying a design mindset 1.5.6 Applying operational constraints 1.5.7 Achieving security in depth Summary 2 Intermission: The anti-Hamlet 2.1 An online bookstore with business integrity issues 2.1.1 The inner workings of the accounts receivable ledger 2.1.2 How the inventory system tracks books in the store 2.1.3 Shipping anti-books 2.1.4 Systems living the same lie 2.1.5 A do-it-yourself discount voucher 2.2 Shallow modeling 2.2.1 How shallow models emerge 2.2.2 The dangers of implicit concepts 2.3 Deep modeling 2.3.1 How deep models emerge 2.3.2 Make the implicit explicit Summary Part 2: Fundamentals 3 Core concepts of Domain-Driven Design 3.1 Models as tools for deeper insight 3.1.1 Models are simplifications 3.1.2 Models are strict Some terminology 3.1.3 Models capture deep understanding 3.1.4 Making a model means choosing one 3.1.5 The model forms the ubiquitous language 3.2 Building blocks for your model 3.2.1 Entities 3.2.2 Value objects 3.2.3 Aggregates Repositories 3.3 Bounded contexts 3.3.1 Semantics of the ubiquitous language 3.3.2 The relationship between language, model, and bounded context 3.3.3 Identifying the bounded context 3.4 Interactions between contexts 3.4.1 Sharing a model in two contexts 3.4.2 Drawing a context map Summary 4 Code constructs promoting security 4.1 Immutability 4.1.1 An ordinary webshop 4.2 Failing fast using contracts 4.2.1 Checking preconditions for method arguments 4.2.2 Upholding invariants in constructors 4.2.3 Failing for bad state 4.3 Validation 4.3.1 Checking the origin of data Access tokens 4.3.2 Checking the size of data 4.3.3 Checking lexical content of data 4.3.4 Checking the data syntax 4.3.5 Checking the data semantics Summary 5 Domain primitives 5.1 Domain primitives and invariants 5.1.1 Domain primitives as the smallest building blocks 5.1.2 Context boundaries define meaning 5.1.3 Building your domain primitive library 5.1.4 Hardening APIs with your domain primitive library 5.1.5 Avoid exposing your domain publicly 5.2 Read-once objects 5.2.1 Detecting unintentional use Details of the Password class 5.2.2 Avoiding leaks caused by evolving code 5.3 Standing on the shoulders of domain primitives 5.3.1 The risk with overcluttered entity methods 5.3.2 Decluttering entities 5.3.3 When to use domain primitives in entities 5.4 Taint analysis Summary 6 Ensuring integrity of state 6.1 Managing state using entities 6.2 Consistent on creation 6.2.1 The perils of no-arg constructors 6.2.2 ORM frameworks and no-arg constructors 6.2.3 All mandatory fields as constructor arguments The history of the JavaBeans set/get naming conventions 6.2.4 Construction with a fluent interface Nonfluent fluent interface 6.2.5 Catching advanced constraints in code 6.2.6 The builder pattern for upholding advanced constraints Constructors galore 6.2.7 ORM frameworks and advanced constraints 6.2.8 Which construction to use when 6.3 Integrity of entities 6.3.1 Getter and setter methods 6.3.2 Avoid sharing mutable objects A bad date 6.3.3 Securing the integrity of collections The trouble of modifiable items in a list Summary 7 Reducing complexity of state 7.1 Partially immutable entities 7.2 Entity state objects 7.2.1 Upholding entity state rules Online gambling sites and free money 7.2.2 Implementing entity state as a separate object 7.3 Entity snapshots 7.3.1 Entities represented with immutable objects 7.3.2 Changing the state of the underlying entity How databases make entities lock 7.3.3 When to use snapshots 7.4 Entity relay 7.4.1 Splitting the state graph into phases 7.4.2 When to form an entity relay Summary 8 Leveraging your delivery pipeline for security 8.1 Using a delivery pipeline 8.2 Securing your design using unit tests 8.2.1 Understanding the domain rules 8.2.2 Testing normal behavior 8.2.3 Testing boundary behavior 8.2.4 Testing with invalid input Testing with input that causes eventual harm 8.2.5 Testing the extreme 8.3 Verifying feature toggles 8.3.1 The perils of slippery toggles 8.3.2 Feature toggling as a development tool 8.3.3 Taming the toggles 8.3.4 Dealing with combinatory complexity 8.3.5 Toggles are subject to auditing 8.4 Automated security tests 8.4.1 Security tests are only tests 8.4.2 Working with security tests 8.4.3 Leveraging infrastructure as code 8.4.4 Putting it into practice 8.5 Testing for availability 8.5.1 Estimating the headroom 8.5.2 Exploiting domain rules 8.6 Validating configuration 8.6.1 Causes for configuration-related security flaws 8.6.2 Automated tests as your safety net 8.6.3 Knowing your defaults and verifying them Summary 9 Handling failures securely 9.1 Using exceptions to deal with failure 9.1.1 Throwing exceptions Be careful using findFirst 9.1.2 Handling exceptions 9.1.3 Dealing with exception payload 9.2 Handling failures without exceptions 9.2.1 Failures aren’t exceptional 9.2.2 Designing for failures 9.3 Designing for availability 9.3.1 Resilience 9.3.2 Responsiveness 9.3.3 Circuit breakers and timeouts Always specify a timeout 9.3.4 Bulkheads The Reactive Manifesto 9.4 Handling bad data Cross-site scripting and second-order attacks 9.4.1 Don’t repair data before validation 9.4.2 Never echo input verbatim XSS Polyglots Summary 10 Benefits of cloud thinking 10.1 The twelve-factor app and cloud-native concepts 10.2 Storing configuration in the environment 10.2.1 Don’t put environment configuration in code 10.2.2 Never store secrets in resource files 10.2.3 Placing configuration in the environment 10.3 Separate processes 10.3.1 Deploying and running are separate things Principle of least privilege 10.3.2 Processing instances don’t hold state Backing services 10.3.3 Security benefits 10.4 Avoid logging to file 10.4.1 Confidentiality 10.4.2 Integrity 10.4.3 Availability 10.4.4 Logging as a service 10.5 Admin processes 10.5.1 The security risk of overlooked admin tasks 10.5.2 Admin tasks as first-class citizens Admin of log files 10.6 Service discovery and load balancing 10.6.1 Centralized load balancing 10.6.2 Client-side load balancing 10.6.3 Embracing change 10.7 The three R’s of enterprise security 10.7.1 Increase change to reduce risk Advanced persistent threats 10.7.2 Rotate 10.7.3 Repave Containers and virtual machines 10.7.4 Repair Summary 11 Intermission: An insurance policy for free 11.1 Over-the-counter insurance policies 11.2 Separating services 11.3 A new payment type 11.4 A crashed car, a late payment, and a court case 11.5 Understanding what went wrong 11.6 Seeing the entire picture 11.7 A note on microservices architecture Summary Part 3: Applying the fundamentals 12 Guidance in legacy code 12.1 Determining where to apply domain primitives in legacy code 12.2 Ambiguous parameter lists What about builders? 12.2.1 The direct approach 12.2.2 The discovery approach 12.2.3 The new API approach 12.3 Logging unchecked strings 12.3.1 Identifying logging of unchecked strings 12.3.2 Identifying implicit data leakage 12.4 Defensive code constructs 12.4.1 Code that doesn’t trust itself 12.4.2 Contracts and domain primitives to the rescue 12.4.3 Overlenient use of Optional 12.5 DRY misapplied�not focusing on ideas, but on text 12.5.1 A false positive that shouldn’t be DRY’d away 12.5.2 The problem of collecting repeated pieces of code 12.5.3 The good DRY 12.5.4 A false negative 12.6 Insufficient validation in domain types 12.7 Only testing the good enough 12.8 Partial domain primitives No double money 12.8.1 Implicit, contextual currency 12.8.2 A U.S. dollar is not a Slovenian tolar 12.8.3 Encompassing a conceptual whole Summary 13 Guidance on microservices 13.1 What’s a microservice? A distributed monolith 13.1.1 Independent runtimes 13.1.2 Independent updates 13.1.3 Designed for down 13.2 Each service is a bounded context 13.2.1 The importance of designing your API 13.2.2 Splitting monoliths 13.2.3 Semantics and evolving services 13.3 Sensitive data across services 13.3.1 CIA-T in a microservice architecture 13.3.2 Thinking �sensitive� Passing data over the wire 13.4 Logging in microservices 13.4.1 Integrity of aggregated log data 13.4.2 Traceability in log data Semantic versioning 13.4.3 Confidentiality through a domain-oriented logger API Summary 14 A final word: Don’t forget about security! 14.1 Conduct code security reviews 14.1.1 What to include in a code security review 14.1.2 Whom to include in a code security review 14.2 Keep track of your stack 14.2.1 Aggregating information 14.2.2 Prioritizing work 14.3 Run security penetration tests 14.3.1 Challenging your design 14.3.2 Learning from your mistakes 14.3.3 How often should you run a pen test? Context-driven testing (CDT) 14.3.4 Using bug bounty programs as continuous pen testing 14.4 Study the field of security 14.4.1 Everyone needs a basic understanding about security 14.4.2 Making security a source of inspiration 14.5 Develop a security incident mechanism Distinguishing between incident handling and problem resolution 14.5.1 Incident handling 14.5.2 Problem resolution 14.5.3 Resilience, Wolff’s law, and antifragility System theory The tragedy of penetration tests and going antifragile Summary About the Technology Security should be the natural outcome of your development process. As applications increase in complexity, it becomes more important to bake security-mindedness into every step. The secure-by-design approach teaches best practices to implement essential software features using design as the primary driver for security. About the book Secure by Design teaches you principles and best practices for writing highly secure software. At the code level, you’ll discover security-promoting constructs like safe error handling, secure validation, and domain primitives. You’ll also master security-centric techniques you can apply throughout your build-test-deploy pipeline, including the unique concerns of modern microservices and cloud-native designs. What's inside Secure-by-design concepts Spotting hidden security problems Secure code constructs Assessing security by identifying common design flaws Securing legacy and microservices architectures About the reader Readers should have some experience in designing applications in Java, C#, .NET, or a similar language. About the authors Dan Bergh Johnsson, Daniel Deogun, and Daniel Sawano are acclaimed speakers who often present at international conferences on topics of high-quality development, as well as security and design.

Develop a greater intuition for the proper use of cryptography. This book teaches the basics of writing cryptographic algorithms in Python, demystifies cryptographic internals, and demonstrates common ways cryptography is used incorrectly. Cryptography is the lifeblood of the digital world’s security infrastructure. From governments around the world to the average consumer, most communications are protected in some form or another by cryptography. These days, even Google searches are encrypted. Despite its ubiquity, cryptography is easy to misconfigure, misuse, and misunderstand. Developers building cryptographic operations into their applications are not typically experts in the subject, and may not fully grasp the implication of different algorithms, modes, and other parameters. The concepts in this book are largely taught by example, including incorrect uses of cryptography and how "bad" cryptography can be broken. By digging into the guts of cryptography, you can experience what works, what doesn't, and why. What You’ll Learn Understand where cryptography is used, why, and how it gets misused Know what secure hashing is used for and its basic properties Get up to speed on algorithms and modes for block ciphers such as AES, and see how bad configurations break Use message integrity and/or digital signatures to protect messages Utilize modern symmetric ciphers such as AES-GCM and CHACHA Practice the basics of public key cryptography, including ECDSA signatures Discover how RSA encryption can be broken if insecure padding is used Employ TLS connections for secure communications Find out how certificates work and modern improvements such as certificate pinning and certificate transparency (CT) logs Who This Book Is For IT administrators and software developers familiar with Python. Although readers may have some knowledge of cryptography, the book assumes that the reader is starting from scratch. Table of contents Cryptography: More Than Secrecy Hashing Symmetric Encryption: Two Sides, One Key Asymmetric Encryption: Public/Private Keys Message Integrity, Signatures, and Certificates Combining Asymmetric and Symmetric Algorithms More Symmetric Crypto: Authenticated Encryption and Kerberos TLS Communications

What You Will Learn Study the mindset of an attacker Adopt defensive strategies Classify and plan for standard web application security threats Prepare to combat standard system security problems Defend WordPress and mobile applications Use security tools and plan for defense against remote execution Book Description Becoming the Hacker will teach you how to approach web penetration testing with an attacker's mindset. While testing web applications for performance is common, the ever-changing threat landscape makes security testing much more difficult for the defender. There are many web application tools that claim to provide a complete survey and defense against potential threats, but they must be analyzed in line with the security needs of each web application or service. We must understand how an attacker approaches a web application and the implications of breaching its defenses. Through the first part of the book, Adrian Pruteanu walks you through commonly encountered vulnerabilities and how to take advantage of them to achieve your goal. The latter part of the book shifts gears and puts the newly learned techniques into practice, going over scenarios where the target may be a popular content management system or a containerized application and its network. Becoming the Hacker is a clear guide to web application security from an attacker's point of view, from which both sides can benefit. Authors Adrian Pruteanu Adrian Pruteanu is an accomplished security consultant and researcher working primarily in the offensive security space. In his career of over 10 years, he has gone through countless penetration testing engagements, red team exercises, and application security assessments. He routinely works with Fortune 500 companies, helping them secure their systems by identifying vulnerabilities or reversing malware samples. Adrian likes to keep up with his certifications as well, and holds several of them, including CISSP, OSCE, OSCP, GXPN, GREM, and a bunch of Microsoft titles as well. As a certified trainer for Microsoft, he has also delivered custom training in the past to various clients. In his spare time, Adrian likes to develop new tools and software to aide with penetration testing efforts or just to keep users safe online. He may occasionally go after a bug bounty or two, and he likes to spend time researching and (responsibly) disclosing vulnerabilities. Table of Contents Chapter 1: Introduction to Attacking Web Applications Chapter 2: Efficient Discovery Chapter 3: Low-Hanging Fruit Chapter 4: Advanced Brute-forcing Chapter 5: File Inclusion Attacks Chapter 6: Out-of-Band Exploitation Chapter 7: Automated Testing Chapter 8: Bad Serialization Chapter 9: Practical Client-Side Attacks Chapter 10: Practical Server-Side Attacks Chapter 11: Attacking APIs Chapter 12: Attacking CMS Chapter 13: Breaking Containers

Detect motion and recognize gestures to control a smartphone game Detect car headlights and estimate their distance Detect and recognize human and cat faces to trigger an alarm Amplify motion in a real-time video to show heartbeats and breaths Make a physics simulation that detects shapes in a real-world drawing Build OpenCV 4 projects in Python 3 for desktops and Raspberry Pi Develop OpenCV 4 Android applications in Android Studio and Unity OpenCV 4 is a collection of image processing functions and computer vision algorithms. It is open source, supports many programming languages and platforms, and is fast enough for many real-time applications. With this handy library, you’ll be able to build a variety of impressive gadgets. OpenCV 4 for Secret Agents features a broad selection of projects based on computer vision, machine learning, and several application frameworks. To enable you to build apps for diverse desktop systems and Raspberry Pi, the book supports multiple Python versions, from 2.7 to 3.7. For Android app development, the book also supports Java in Android Studio, and C# in the Unity game engine. Taking inspiration from the world of James Bond, this book will add a touch of adventure and computer vision to your daily routine. You’ll be able to protect your home and car with intelligent camera systems that analyze obstacles, people, and even cats. In addition to this, you’ll also learn how to train a search engine to praise or criticize the images that it finds, and build a mobile app that speaks to you and responds to your body language. By the end of this book, you will be equipped with the knowledge you need to advance your skills as an app developer and a computer vision specialist. Build OpenCV 4 apps with Python 2 and 3 on desktops and Raspberry Pi, Java on Android, and C# in Unity Detect, classify, recognize, and measure real-world objects in real-time Work with images from diverse sources, including the web, research datasets, and various cameras Table of contents 1 Preparing for the Mission Technical requirements Setting up a development machine Setting up Android Studio and OpenCV Setting up Unity and OpenCV Setting up a Raspberry Pi Finding OpenCV documentation, help, and updates Alternatives to Raspberry Pi Summary 2 Searching for Luxury Accommodations Worldwide Technical requirements Planning the Luxocator app Creating, comparing, and storing histograms Training the classifier with reference images Acquiring images from the web Acquiring images from Bing Image Search Preparing images and resources for the app Integrating everything into the GUI Running Luxocator and troubleshooting SSL problems Building Luxocator for distribution Summary 3 Training a Smart Alarm to Recognize the Villain and His Cat Technical requirements Understanding machine learning in general Planning the Interactive Recognizer app Understanding Haar cascades and LBPH Implementing the Interactive Recognizer app Planning the cat-detection model Implementing the training script for the cat-detection model Planning the Angora Blue app Implementing the Angora Blue app Building Angora Blue for distribution Further fun with finding felines Summary 4 Controlling a Phone App with Your Suave Gestures Technical requirements Planning the Goldgesture app Understanding optical flow Setting up the project in Android Studio Getting a cascade file and audio files Specifying the app's requirements Laying out a camera preview as the main view Tracking back-and-forth gestures Playing audio clips as questions and answers Capturing images and tracking faces in an activity Summary 5 Equipping Your Car with a Rearview Camera and Hazard Detection Technical requirements Planning The Living Headlights app Detecting lights as blobs Estimating distances (a cheap approach) Implementing The Living Headlights app Testing The Living Headlights app at home Testing The Living Headlights app in a car Summary 6 Creating a Physics Simulation Based on a Pen and Paper Sketch Technical requirements Planning the Rollingball app Detecting circles and lines Setting up OpenCV for Unity Configuring and building the Unity project Creating the Rollingball scene in Unity Creating Unity assets and adding them to the scene Creating the launcher scene in Unity Tidying up and testing Summary 7 Seeing a Heartbeat with a Motion-Amplifying Camera Technical requirements Planning the Lazy Eyes app Understanding what Eulerian video magnification can do Extracting repeating signals from video using the fast Fourier transform Compositing two images using image pyramids Implementing the Lazy Eyes app Configuring and testing the app for various motions Summary 8 Stopping Time and Seeing like a Bee Technical requirements Planning the Sunbaker app Understanding the spectrum Finding specialized cameras Installing Spinnaker SDK and PySpin Capturing images from industrial cameras using PySpin Adapting the Lazy Eyes app to make Sunbaker Summary

Get to grips with security fundamentals from Certificates and Encryption to Identity and Access Management Secure devices and applications that are used by your company Identify the different types of malware and virus and take appropriate actions to protect against them Protect your environment against social engineering and advanced attacks Implement PKI concepts Learn about secure coding techniques, quality control, and testingTroubleshoot common security issues CompTIA Security+ is a worldwide certification that establishes the fundamental knowledge required to perform core security functions and pursue an IT security career. CompTIA Security+ Certification Guide is a best-in-class exam study guide that covers all of CompTIA Security+ 501 exam objectives. It is authored by Ian Neil, who is a world-class trainer of CompTIA Security+ 501. Packed with self-assessment scenarios and realistic exam questions, this guide will help you master the core concepts to succeed in the exam the first time you take it. Using relevant examples, you will learn all the important security fundamentals from Certificates and Encryption to Identity and Access Management concepts. You will then dive into the important domains of the exam; namely, threats, attacks and vulnerabilities, technologies and tools, architecture and design, risk management, and cryptography and Public Key Infrastructure (PKI). This book comes with over 600 practice questions with detailed explanation that is at the exam level and also includes two mock exams to help you with your study plan. This guide will ensure that you are ready for certification exam. Learn cryptography and various cryptography algorithms for real-world implementations Discover security policies, plans, and procedures to protect your security infrastructure Written by Ian Neil, one of the world’s top CompTIA Security+ (SY0-501) trainer Table of contents 1 Understanding Security Fundamentals CIA triad concept Identifying security controls Hashing and data integrity Defense in depth model Review questions Answers and explanations 2 Conducting Risk Analysis Risk management Importance of policy, plans, and procedures Role-based awareness training Business impact analysis concepts Privacy threshold assessment/privacy impact assessment Supply chain risk assessment Business impact analysis concepts Risk procedures and concepts Risk register Qualitative/quantitative risk analysis Review questions Answers and explanations 3 Implementing Security Policies and Procedures Industry-standard frameworks and reference architecture Policies and user guides Implementing data security and privacy practices Practical – creating a baseline Review questions 4 Delving into Identity and Access Management Understanding identity and access management concepts Installing and configuring identity and access services Learning about identity and access management controls Common account management practices Practical exercise – password policy Review questions Answers and explanations 5 Understanding Network Components OSI – reference model Installing and configuring network components Security information and event management Secure network architecture concepts Implementing secure protocols Implementing wireless security Wireless bandwidth/band selection Wireless channels Wireless antenna types and signal strength Wireless coverage Wireless encryption Review questions Answers and explanations 6 Understanding Cloud Models and Virtualization Cloud computing Implementing different cloud deployment models Cloud service models Disk resiliency and redundancy Storage area network Understanding cloud storage concepts Exploring virtual networks Heating, ventilation, and air-conditioning (HVAC) Network environments Practical exercise – is the cloud cost-effective? Review questions Answers and explanations 7 Managing Hosts and Application Deployment Deploying mobile devices securely Mobile device management concepts Device management Device protection Device data Mobile device enforcement and monitoring Industrial control system Mobile devices – security implications of embedded systems Special-purpose devices Secure application development and deployment concepts Development life cycle models – waterfall versus Agile DevOps Server-side versus client-side execution and validation Review questions Answers and explanations 8 Protecting Against Attacks and Vulnerabilities Virus and malware attacks Social engineering attacks Common attacks Programming attacks Hijacking related attacks Driver manipulation Cryptographic attacks Password attacks Wireless attacks Penetration testing Vulnerability scanning concepts Credentialed versus non-credentialed scans Penetration testing versus vulnerability scanning Practical exercise—running a vulnerability scanner Review questions Answers and explanations 9 Implementing the Public Key Infrastructure PKI concepts Asymmetric and symmetric encryption Symmetric algorithms Asymmetric algorithms Symmetric versus asymmetric analogy Key-stretching algorithms Cipher modes Hashing and data integrity Comparing and contrasting the basic concepts of cryptography Basic cryptographic terminology Common use cases for cryptography Practical exercises Review questions Answers and explanations 10 Responding to Security Incidents Incident response procedures Understanding the basic concepts of forensics Software tools for assessing the security posture of an organization Review questions Answers and explanations 11 Managing Business Continuity Implementing secure systems design Hardware/firmware security The importance of the secure staging deployment concepts Troubleshooting common security issues Disaster recovery and the continuity of operations concepts Review questions Answers and explanations 12 Mock Exam 1 13 Mock Exam 2

Šta ćete naučiti da kreirate bezbedno i izolovano laboratorijsko okruženje za analizu zlonamernih programa da ekstrahujete metapodatke koji su povezani sa zlonamernim programima da proveravate da li zlonamerni programi komuniciraju sa sistemom da vršite analizu koda, koristeći alatke IDA Pro i x64dbg da primenjujete obrnuti inženjering na različite funkcije zlonamernih programa da primenjujete obrnuti inženjering i dekodirate uobičajene algoritme kodiranja/šifrovanja da vršite injektovanje različitih kodova i primenite hooking tehnike da ispitujete i „lovite“ zlonamerne programe korišćenjem forenzike memorije Opis knjige Analiza zlonamernih programa i forenzika memorije su moćne tehnike analize i ispitivanja koje se koriste u obrnutom inženjeringu, digitalnoj forenzici i reakciji na incidente. S obzirom da su napadači postali sofisticirani i da vrše napredne zlonamerne napade na važnu infrastrukturu, centre podataka i privatne i javne organizacije, otkrivanje i ispitivanje takvih upada i reakcija na njih su od ključne važnosti za stručnjake informacione bezbednosti. Analiza zlonamernih programa i forenzika memorije postale su veštine koje morate da posedujete u borbi protiv naprednih zlonamernih programa, ciljanih napada i narušavanja bezbednosti. U ovoj knjizi ćete kroz analizu zlonamernih podataka upoznati koncepte, tehnike i alatke koji će vam pomoći da razumete ponašanje i karakteristike tih programa. Naučićete i tehnike za ispitivanje i „hvatanje“ zlonamernih programa korišćenjem forenzike memorije. Upoznaćete osnove analize zlonamernih programa, a zatim ćete postepeno preći na naprednije koncepte analize koda i forenziku memorije. Da biste bolje mogli da razumete temu i da biste naučili veštine koje su potrebne za analiziranje, ispitivanje i reagovanje na incidente zlonamernih programa, u knjizi se koriste uzorci zlonamernih programa iz realnog sveta, zaražene slike memorije i vizuelni grafikoni. Autor Monnappa K A Monnappa K A je zaposlen u kompaniji „Cisco Systems“ kao istražitelj za informacionu bezbednost - fokusira se na obaveštajne informacije o pretnjama i istraživanje naprednih napada na Internetu. Član je istražnog odbora Black Hat, autor bezbednosnog programa Limon Linux, pobednik takmičenja „Volatility Plugin Contest 2016“ i jedan od osnivača istraživačke zajednice za računarsku bezbednost „Cysinfo“. Organizovao je programe obuke na različitim konferencijama o bezbednosti, uključujući Black Hat, FIRST, OPCDE i DSCI. Redovno sprovodi treninge na konferenciji o bezbednosti Black Hat u Sjedinjenim Američkim Državama, Aziji i Evropi. Sadržaj Poglavlje 1: Uvod u analizu zlonamernih programa Poglavlje 2: Statička analiza Poglavlje 3: Dinamička analiza Poglavlje 4: Asemblerski jezik i osnove disasembliranja Poglavlje 5: Disasembliranje pomoću alatke IDA Poglavlje 6: Debagovanje zlonamernih binarnih datoteka Poglavlje 7: Funkcije i postojanost zlonamernih programa Poglavlje 8: Umetanje koda i hooking tehnika Poglavlje 9: Tehnike maskiranja zlonamernih programa Poglavlje 10: „Hvatanje“ zlonamernih programa korišćenjem forenzike memorije Poglavlje 11: Otkrivanje naprednih zlonamernih programa korišćenjem forenzike memorije