|
|
内容简介
Power up your Windows security skills with expert guidance, in-depth technical insights, and dozens of real-world vulnerability examples from Google Project Zero’s most renowned researcher!
通过Google Project Zero最知名研究人员的专业指导、深入的技术见解以及数十个真实世界中的漏洞实例,提升您的Windows安全技能!
Learn core components of the system in greater depth than ever before, and gain hands-on experience probing advanced Microsoft security systems with the added benefit of PowerShell scripts.
比以往任何时候都更深入地学习系统的核心组件,并通过PowerShell脚本的额外优势,获得探索高级Microsoft安全系统的实践经验。
Windows Security Internals is a must-have for anyone needing to understand the Windows operating system’s low-level implementations, whether to discover new vulnerabilities or protect against known ones. Developers, devops, and security researchers will all find unparalleled insight into the operating system’s key elements and weaknesses, surpassing even Microsoft’s official documentation.
《Windows安全内幕》是任何需要了解Windows操作系统底层实现的人员的必备之作,无论是为了发现新的漏洞还是为了防范已知的漏洞。开发人员、DevOps人员和安全研究人员都将从中获得对操作系统关键要素和弱点的无与伦比的见解,这些见解甚至超越了微软的官方文档。
Author James Forshaw teaches through meticulously crafted PowerShell examples that can be experimented with and modified, covering everything from basic resource security analysis to advanced techniques like using network authentication. The examples will help you actively test and manipulate system behaviors, learn how Windows secures files and the registry, re-create from scratch how the system grants access to a resource, learn how Windows implements authentication both locally and over a network, and much more.
作者詹姆斯·福肖(James Forshaw)通过精心设计的PowerShell示例进行教学,这些示例可以进行实验和修改,内容涵盖从基本的资源安全分析到使用网络认证等高级技术。这些示例将帮助您积极测试和操控系统行为,学习Windows如何保护文件和注册表,从零开始重新创建系统如何授予资源访问权限,了解Windows如何在本地和网络上实现认证,以及更多内容。
You’ll also explore a wide range of topics, such as:
您还将探索一系列广泛的主题,例如:
- Windows security architecture, including both the kernel and user-mode applications
- Windows安全架构,包括内核和用户模式应用程序
- The Windows Security Reference Monitor (SRM), including access tokens, querying and setting a resource’s security descriptor, and access checking and auditing
- Windows安全引用监视器(SRM),包括访问令牌、查询和设置资源的安全描述符,以及访问检查和审计
- Interactive Windows authentication and credential storage in the Security Account Manager (SAM) and Active Directory
- Windows交互式认证和安全账户管理器(SAM)及Active Directory中的凭据存储
- Mechanisms of network authentication protocols, including NTLM and Kerberos
- 网络认证协议(包括NTLM和Kerberos)的机制
In an era of sophisticated cyberattacks on Windows networks, mastering the operating system’s complex security mechanisms is more crucial than ever. Whether you’re defending against the latest cyber threats or delving into the intricacies of Windows security architecture, you’ll find Windows Security Internals indispensable in your efforts to navigate the complexities of today’s cybersecurity landscape.
在Windows网络遭受复杂网络攻击的时代,掌握操作系统复杂的安全机制比以往任何时候都更加重要。无论您是在防御最新的网络威胁,还是深入研究Windows安全架构的复杂性,您都会发现《Windows安全内幕》在帮助您应对当今网络安全环境的复杂性方面不可或缺。
|
|
发表于 2024-11-5 01:12:24
