{"product_id":"pen-testing-from-contract-to-report-isbn-9781394176786","title":"Pen Testing from Contract to Report","description":"\u003cp\u003e \u003cb\u003eProtect your system or web application with this accessible guide\u003c\/b\u003e \u003c\/p\u003e\u003cp\u003ePenetration tests, also known as ‘pen tests’, are a means of assessing the security of a computer system by simulating a cyber-attack. These tests can be an essential tool in detecting exploitable vulnerabilities in a computer system or web application, averting potential user data breaches, privacy violations, losses of system function, and more. With system security an increasingly fundamental part of a connected world, it has never been more important that cyber professionals understand the pen test and its potential applications. \u003c\/p\u003e\u003cp\u003e\u003ci\u003ePen Testing from Contract to Report \u003c\/i\u003eoffers a step-by-step overview of the subject. Built around a new concept called the Penetration Testing Life Cycle, it breaks the process into phases, guiding the reader through each phase and its potential to expose and address system vulnerabilities. The result is an essential tool in the ongoing fight against harmful system intrusions. \u003c\/p\u003e\u003cp\u003eIn \u003ci\u003ePen Testing from Contract to Report \u003c\/i\u003ereaders will also find: \u003c\/p\u003e\u003cul\u003e\n\u003cli\u003eContent mapped to certification exams such as the CompTIA PenTest+\u003c\/li\u003e\n\u003cli\u003eDetailed techniques for evading intrusion detection systems, firewalls, honeypots, and more\u003c\/li\u003e\n\u003cli\u003eAccompanying software designed to enable the reader to practice the concepts outlined, as well as end-of-chapter questions and case studies\u003c\/li\u003e\n\u003c\/ul\u003e \u003cp\u003e\u003ci\u003ePen Testing from Contract to Report \u003c\/i\u003eis ideal for any cyber security professional or advanced student of cyber security. \u003c\/p\u003e\u003cp\u003eForeword viii\u003c\/p\u003e \u003cp\u003ePreface ix\u003c\/p\u003e \u003cp\u003eAcknowledgement x\u003c\/p\u003e \u003cp\u003eList of Abbreviations xi\u003c\/p\u003e \u003cp\u003eCompanion Website xiii\u003c\/p\u003e \u003cp\u003e1 Introduction to Penetration Testing 1\u003c\/p\u003e \u003cp\u003e2 The Contract 19\u003c\/p\u003e \u003cp\u003e3 Law and Legislation 39\u003c\/p\u003e \u003cp\u003e4 Footprinting and Reconnaissance 53\u003c\/p\u003e \u003cp\u003e5 Scanning Networks 81\u003c\/p\u003e \u003cp\u003e6 Enumeration 111\u003c\/p\u003e \u003cp\u003e7 Vulnerability Analysis 137\u003c\/p\u003e \u003cp\u003e8 System Hacking 183\u003c\/p\u003e \u003cp\u003e9 Malware Threats 239\u003c\/p\u003e \u003cp\u003e10 Sniffing 265\u003c\/p\u003e \u003cp\u003e11 Social Engineering 283\u003c\/p\u003e \u003cp\u003e12 Denial of Service 315\u003c\/p\u003e \u003cp\u003e13 Session Hijacking 343\u003c\/p\u003e \u003cp\u003e14 Evading IDS, Firewalls, and Honeypots 363\u003c\/p\u003e \u003cp\u003e15 Web Servers 389\u003c\/p\u003e \u003cp\u003e16 Web Application Hacking 413\u003c\/p\u003e \u003cp\u003e17 SQL Injection 481\u003c\/p\u003e \u003cp\u003e18 Hacking Wireless Networks 517\u003c\/p\u003e \u003cp\u003e19 Mobile Platforms 549\u003c\/p\u003e \u003cp\u003e20 Internet of Things (IoT) 581\u003c\/p\u003e \u003cp\u003e21 Cloud Computing 601\u003c\/p\u003e \u003cp\u003e22 The Report 623\u003c\/p\u003e \u003cp\u003eIndex 639\u003c\/p\u003e \u003cp\u003e\u003cb\u003eAlfred Basta, PhD, CCP (CMMC), CISM, CPENT, LPT, OSCP, PMP, CRTO, CHPSE, CRISC, CISA, CGEIT, CASP+, CYSA+,\u003c\/b\u003e is a professor of mathematics, cryptography, and information security as well as a professional speaker on internet security, networking, and cryptography. He is a member of many associations, including ISACA, ECE, and the Mathematical Association of America. Dr. Basta’s other publications include Computer Security and Penetration Testing, Mathematics for Information Technology, Linux Operations and Administration, and Database Security. In addition, Dr. Basta is the chair of EC-Council’s CPENT Scheme Committee. He has worked as a faculty member and curriculum advisor for programming and cyber security programs at numerous colleges and universities.\u003c\/p\u003e \u003cp\u003e\u003cb\u003eNadine Basta, MSc., CEH,\u003c\/b\u003e is a professor of computer science, cybersecurity, mathematics, and information technology. Her numerous certifications include CEH, MCSE, MSDBA, CCDP, NCSE, NCTE, and CCA. A security consultant and auditor, she combines strong \"in the field\" experience with her academic background. She is also the author of \u003ci\u003eComputer Security and Penetration Testing, Mathematics for Information Technology, \u003c\/i\u003eand\u003ci\u003e Linux Operations and Administration.\u003c\/i\u003e Nadine has extensive teaching and research experience in computer science and cybersecurity.\u003c\/p\u003e \u003cp\u003e\u003cb\u003eWaqar Anwar\u003c\/b\u003e is a Cybersecurity Curriculum Specialist with over 10 years of experience in the field. He also develops and delivers training to faculty and staff on cybersecurity topics and conducts research on cybersecurity topics. Mr. Anwar is a frequent speaker at industry conferences. He is also a member of several cybersecurity organizations including SysAdmin, Audit, Network and Security SANS, CYBRARY, and Information Systems Security Association International ISSA.\u003c\/p\u003e  \u003cp\u003e \u003cb\u003eProtect your system or web application with this accessible guide\u003c\/b\u003e \u003c\/p\u003e\u003cp\u003ePenetration tests, also known as ‘pen tests’, are a means of assessing the security of a computer system by simulating a cyber-attack. These tests can be an essential tool in detecting exploitable vulnerabilities in a computer system or web application, averting potential user data breaches, privacy violations, losses of system function, and more. With system security an increasingly fundamental part of a connected world, it has never been more important that cyber professionals understand the pen test and its potential applications. \u003c\/p\u003e\u003cp\u003e\u003ci\u003ePen Testing from Contract to Report \u003c\/i\u003eoffers a step-by-step overview of the subject. Built around a new concept called the Penetration Testing Life Cycle, it breaks the process into phases, guiding the reader through each phase and its potential to expose and address system vulnerabilities. The result is an essential tool in the ongoing fight against harmful system intrusions. \u003c\/p\u003e\u003cp\u003eIn \u003ci\u003ePen Testing from Contract to Report \u003c\/i\u003ereaders will also find: \u003c\/p\u003e\u003cul\u003e\n\u003cli\u003eContent mapped to certification exams such as the CompTIA PenTest+\u003c\/li\u003e\n\u003cli\u003eDetailed techniques for evading intrusion detection systems, firewalls, honeypots, and more\u003c\/li\u003e\n\u003cli\u003eAccompanying software designed to enable the reader to practice the concepts outlined, as well as end-of-chapter questions and case studies\u003c\/li\u003e\n\u003c\/ul\u003e \u003cp\u003e\u003ci\u003ePen Testing from Contract to Report \u003c\/i\u003eis ideal for any cyber security professional or advanced student of cyber security.\u003c\/p\u003e","brand":"Wiley","offers":[{"title":"Default Title","offer_id":47989759213797,"sku":"NP9781394176786","price":76.5,"currency_code":"USD","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/1842\/7735\/files\/9781394176786.jpg?v=1761785379","url":"https:\/\/k12savings.com\/products\/pen-testing-from-contract-to-report-isbn-9781394176786","provider":"K12savings","version":"1.0","type":"link"}