book

Cyber Operations: Building, Defending, and Attacking Modern Computer Networks

Name: Cyber Operations: Building, Defending, and Attacking Modern Computer Networks
Author: Mike O’ Leary
ISBN: 9781484204573

by Mike O’ Leary

November 2015

Intermediate to advanced

772 pages

20h 53m

English

Apress

Read now

Unlock full access

Cover
Title
Copyright
Dedication
Contents at a Glance
Contents
About the Author
About the Technical Reviewer
Acknowledgments
Introduction

Chapter 1 : System Setup
IntroductionVirtualization ToolsVMWare WorkstationVirtualBoxBuilding Linux SystemsConfiguring Software RepositoriesVirtualization SupportNetworking and Basic ConfigurationBrowser SoftwareWindows SystemsVirtualization SupportWindows SIDsNetworking and Basic ConfigurationNotes and ReferencesIntroductionVirtualization ToolsBuilding Linux SystemsBuilding Windows Systems
Chapter 2 : Basic Offense
IntroductionEthicsMetasploitVulnerabilitiesMetasploit: Attacking the BrowserMetasploit Modules for Internet ExplorerAttack: MS13-055 CAnchorElementMetasploit Modules for FirefoxAttack: Firefox XCS Code ExecutionMetasploit: Attacking FlashAttack: Adobe Flash Player Shader Buffer OverflowMetasploit: Attacking JavaAttack: Java JAX-WS Remote Code ExecutionAttack: Java Applet ProviderSkeleton Insecure Invoke MethodMetasploit and Meterpreter CommandsMeterpreterArmitageNotes and ReferencesIntroductionMetasploit: Attacking the BrowserMetasploit: Attacking FlashArmitageReferences
Chapter 3 : Operational Awareness
IntroductionLinux ToolsDetect: Java JAX-WS Remote Code ExecutionDetect: Firefox XCS Code ExecutionWindows ToolsDetect: MS13-055 CAnchorElementDetect: Adobe Flash Player Shader Buffer OverflowNetwork ToolsDetect: Java JAX-WS Remote Code ExecutionNotes and ReferencesLinux ToolsWindows ToolsNetwork ToolsReferences
Chapter 4 : DNS and BIND
IntroductionNamespacesInstalling BINDBasic Master ConfigurationConfiguring BINDForward ZoneReverse ZoneLoopbacksRoot HintsControlling the NameserverRunning BINDBasic Slave ConfigurationQuerying DNSAdvanced ConfigurationRecursion and DNS Amplification AttacksForwardersNotes and ReferencesReferences
Chapter 5 : Scanning the Network
IntroductionNMapNetwork Scanning and MetasploitMetasploit Scanning ModulesNotes and References
Chapter 6 : Active Directory
IntroductionInstallationWindows 2012Windows 2008Windows DNSScripting Windows DNSDNS ConfigurationManaging a DomainAdding SystemsAdding UsersRunning Commands RemotelyOrganizing a DomainGroups and DelegationRemote AdministrationGroup PolicyAdding a Second Domain ControllerNotes and ReferencesInstalling Active DirectoryDNSManaging a DomainOrganizing a Domain
Chapter 7 : Attacking the Domain
IntroductionWindows ReconnaissanceWindows Local Privilege EscalationBypassing Enhanced Protected ModeWindows Privilege Escalation to SYSTEMPrivileged Attacks on a Windows SystemWindows Domain AttacksWindows Password AttacksWindows Cached CredentialsWindows Hash GatheringWindows Direct AttacksLinux Privilege EscalationLinux Privilege Escalation with MetasploitLinux Direct Privilege EscalationLinux Password AttacksNotes and ReferencesWindows Local Privilege EscalationWindows Domain AttacksWindows Password AttacksLinux Privilege Escalation
Chapter 8 : Logging
IntroductionLogging in LinuxSpoofing Log MessagesRemote LoggingLog RotationLogging in WindowsRotating Windows LogsRemote Windows LogsIntegrating Windows and Linux LogsNotes and References
Chapter 9 : Network Services
IntroductionSSHInstalling OpenSSH Server on LinuxConfiguring OpenSSH Server on LinuxOpenSSH Clients on WindowsMan in the Middle Attack against SSHv1Brute Force Attacks against SSHSecuring SSHFTP ServersConnecting to FTP ServersWindows File SharingWindows Server 2012Windows Server 2008Accessing Windows File SharesIndividual File SharesSamba ServersRemote DesktopNotes and ReferencesOpenSSH ServerFTP ServersWindows File Shares
Chapter 10 : Malware and Persistence
IntroductionDocument-Based MalwareCreating MalwarePersistenceKerberos Golden TicketsSticky KeysPersistence on Linux SystemsMalware AnalysisDetecting PersistenceMandiant RedlineNotes and ReferencesMalware Defense
Chapter 11 : Apache and ModSecurity
IntroductionApache InstallationApache ConfigurationEnabling Apache StatusEnabling Individual User DirectoriesDirectory AliasesCGI ScriptsLogs and LoggingVirtual HostsSSL and TLSSigning CertificatesRedirectionBasic AuthenticationModSecurityInstalling ModSecurityStarting ModSecurityModSecurity RulesNotes and References
Chapter 12 : IIS and ModSecurity
IntroductionInstallationIIS ConfigurationWeb SitesBasic SettingsCommand-Line ToolsAccess ControlSSL/TLSRedirectionLoggingModSecurityNotes and References
Chapter 13 : Web Attacks
IntroductionPillaging the BrowserMan in the MiddlePassword AttacksBurp Suite Web ProxyBurp Suite Brute Force Password AttacksCustom Password AttacksDefending Against Password AttacksServer ReconnaissanceSlowlorisHeartbleedNotes and References
Chapter 14 : Firewalls
IntroductionNetwork FirewallsVirtual NetworkingIPFireInstalling IPFireIPFire Initial ConfigurationNetwork Traffic RulesConfiguring the NetworkEgress Filters and ProxiesIPFire FeaturesAttacks through a Network FirewallAttacks from the DMZAttacking the Internal NetworkReconnaissance of the Internal NetworkBypassing the FirewallNotes and References
Chapter 15 : MySQL and MariaDB
IntroductionInstallationUsing MySQLUsers and PrivilegesThe mysql DatabaseManaging MySQLConfigurationAttacking MySQLNotes and References
Chapter 16 : Snort
IntroductionInstallationSnort as a Packet SnifferSnort as an Intrusion Detection SystemTuning SnortBarnyard2Configuring the DatabaseConfiguring the SensorStarting Barnyard AutomaticallyQuerying the DatabaseNotes and References
Chapter 17 : PHP
IntroductionInstallationXAMPPPHP on IISPHP Applications, Configuration, and SecurityRegister GlobalsInclude VulnerabilitiesConfiguring PHPAttacking PHPNotes and References
Chapter 18 : Web Applications
IntroductionSnort ReportBASEphpMyAdminInstalling phpMyAdminAttacking phpMyAdminDefending phpMyAdminJoomlaInstalling JoomlaAttacking JoomlaDefending JoomlaWordPressInstalling WordPressAttacking WordPressDefending WordPressZen CartInstalling Zen CartAttacking Zen CartNotes and References
Index

Overview

Learn to set up, defend, and attack computer networks. This book focuses on networks and real attacks, offers extensive coverage of offensive and defensive techniques, and is supported by a rich collection of exercises and resources.

You'll learn how to configure your network from the ground up, starting by setting up your virtual test environment with basics like DNS and active directory, through common network services, and ending with complex web applications involving web servers and backend databases.

Key defensive techniques are integrated throughout the exposition. You will develop situational awareness of your network and will build a complete defensive infrastructure—including log servers, network firewalls, web application firewalls, and intrusion detection systems.

Of course, you cannot truly understand how to defend a network if you do not know how to attack it, so you will attack your test systems in a variety of ways beginning with elementary attacks against browsers through privilege escalation to a domain administrator, or attacks against simple network servers through the compromise of a defended e-commerce site.

The author, who has coached his university’s cyber defense team three times to the finals of the National Collegiate Cyber Defense Competition, provides a practical, hands-on approach to cyber security.

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Cyber Operations: Building, Defending, and Attacking Modern Computer Networks

Publisher Resources

ISBN: 9781484204573Purchase book

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills