Windows APT Warfare

Name: Windows APT Warfare
Brand: Packt Publishing
SKU: 01817828

Cargando comentarios…

$739

$665

Envío gratis siempre

Comentarios

Cargando el resumen…

Por favor, inicia sesión para escribir un comentario.

Cargando comentarios…

1848287Windows APT Warfarehttps://www.gandhi.com.mx/windows-apt-warfare/phttps://gandhi.vtexassets.com/arquivos/ids/177021/05cd3aba-0b8f-437c-85fa-9257f511e56e.jpg?v=638333699734700000665739MXNPackt PublishingInStock/Ebooks/1817828Windows APT Warfare665739https://www.gandhi.com.mx/windows-apt-warfare/phttps://gandhi.vtexassets.com/arquivos/ids/177021/05cd3aba-0b8f-437c-85fa-9257f511e56e.jpg?v=638333699734700000InStockMXN99999DIEbook20239781804617212_W3siaWQiOiIzMjQzMzAyNy00NWZiLTQ5ODEtYjEzYi1mMTQ2MDgzYzdkYWUiLCJsaXN0UHJpY2UiOjczOSwiZGlzY291bnQiOjc0LCJzZWxsaW5nUHJpY2UiOjY2NSwiaW5jbHVkZXNUYXgiOnRydWUsInByaWNlVHlwZSI6Ildob2xlc2FsZSIsImN1cnJlbmN5IjoiTVhOIiwiZnJvbSI6IjIwMjQtMDQtMDhUMTY6MDA6MDBaIiwicmVnaW9uIjoiTVgiLCJpc1ByZW9yZGVyIjpmYWxzZX1d9781804617212_<p><strong>With the help of red-team techniques learn Windows system design from the PE Binary structure, culminating in modern attack techniques used by multiple red teams in practice.</strong></p><h4>Key Features</h4><ul><li>Explore modern compilers generate executable files from scratch</li><li>Learn to write and develop a Windows Shellcode Generator in Python</li><li>Understand several ways malware evades modern security products and tactics</li></ul><h4>Book Description</h4><p>This book will help you learn the inner workings of Windows systems and gain a red team perspective on how to abuse system design to achieve mainstream APT attack techniques.</p><p>The book distills three aspects of reverse engineering, compilers, and system practice principles into a practical study of Windows cyberattacks and explains the attack techniques from a red red-team perspective, which have been used by national cyber armies in recent years on the solid foundation of PE attack techniques. This book also covers practical examples of malware and online game hacking, such as EXE infection, shellcode development, software packer, UAC bypass, path parser vulnerabilities, and digital signature forgery.</p><p>At the end of this book, you will be able to combine the techniques in this book with the victims computer environment to construct appropriate ways to bypass security and anti-virus products.</p><h4>What you will learn</h4><ul><li>Discover how contemporary compilers create executable files from nothing</li><li>Prepare any software file by the Windows OS using a dynamic process</li><li>Understand how malware circumvents current security measures and tools</li><li>Learn how to decompile program files in the common PE format</li><li>Find out how attackers undermine system functions and exploit vulnerabilities</li></ul><h4>Who This Book Is For</h4><p>This book is for Windows engineers, malware researchers, network administrators, and ethical hackers who want to apply their skills in Windows exploitation, Kernel Practice, and Reverse Engineering. The readers need to have basic knowledge of C/C and hands-on experience with reverse engineering.</p><h4>Table of Contents</h4><ol><li>From Source to Binaries: The Journey of a C Program</li><li>Process Memory: File Mapping, PE Parser, Tiny-Linker, and Hollowing</li><li>Dynamic API Calling: Thread, Process, and Environment Information</li><li>Shellcode Technique: Export Functions Parsing</li><li>Application Loader Design</li><li>PE Module Relocation</li><li>PE To Shellcode: Transform PE Files into Shellcode</li><li>Software Packer Design</li><li>Digital Signature: Authenticode, Verify, and Attacks</li><li>Reversing User Account Control (UAC) and Bypass Tricks</li><li>Appendix: NTFS, Paths, and Symbols</li></ol>...(*_*)9781804617212_<p><strong>Learn Windows system design from the PE binary structure to modern and practical attack techniques used by red teams to implement advanced prevention</strong></p><p><strong>Purchase of the print or Kindle book includes a free PDF eBook</strong></p><h4>Key Features</h4><ul><li>Understand how malware evades modern security products</li><li>Learn to reverse engineer standard PE format program files</li><li>Become familiar with modern attack techniques used by multiple red teams</li></ul><h4>Book Description</h4><p>An Advanced Persistent Threat (APT) is a severe form of cyberattack that lies low in the system for a prolonged time and locates and then exploits sensitive information. Preventing APTs requires a strong foundation of basic security techniques combined with effective security monitoring. This book will help you gain a red team perspective on exploiting system design and master techniques to prevent APT attacks. Once youve understood the internal design of operating systems, youll be ready to get hands-on with red team attacks and, further, learn how to create and compile C source code into an EXE program file. Throughout this book, youll explore the inner workings of how Windows systems run and how attackers abuse this knowledge to bypass antivirus products and protection.</p><p>As you advance, youll cover practical examples of malware and online game hacking, such as EXE infection, shellcode development, software packers, UAC bypass, path parser vulnerabilities, and digital signature forgery, gaining expertise in keeping your system safe from this kind of malware.</p><p>By the end of this book, youll be well equipped to implement the red team techniques that youve learned on a victims computer environment, attempting to bypass security and antivirus products, to test its defense against Windows APT attacks.</p><h4>What you will learn</h4><ul><li>Explore various DLL injection techniques for setting API hooks</li><li>Understand how to run an arbitrary program file in memory</li><li>Become familiar with malware obfuscation techniques to evade antivirus detection</li><li>Discover how malware circumvents current security measures and tools</li><li>Use Microsoft Authenticode to sign your code to avoid tampering</li><li>Explore various strategies to bypass UAC design for privilege escalation</li></ul><h4>Who this book is for</h4><p>This book is for cybersecurity professionals- especially for anyone working on Windows security, or malware researchers, network administrators, ethical hackers looking to explore Windows exploit, kernel practice, and reverse engineering. A basic understanding of reverse engineering and C/C will be helpful.</p>...9781804617212_Packt Publishinglibro_electonico_0b6ecb5c-9d3b-318f-823c-6620919a1f56_9781804617212;9781804617212_9781804617212Federico MaggiInglésMéxicohttps://getbook.kobo.com/koboid-prod-public/packt-epub-44e79295-c741-4e91-a264-6289122646d2.epub2023-03-10T00:00:00+00:00Packt Publishing