Szczegóły ebooka

Penetration Testing Azure for Ethical Hackers. Develop practical skills to perform pentesting and risk assessment of Microsoft Azure environments

Penetration Testing Azure for Ethical Hackers. Develop practical skills to perform pentesting and risk assessment of Microsoft Azure environments

David Okeyode, Karl Fosaaen, Charles Horton

Ebook
“If you’re looking for this book, you need it.” — 5* Amazon Review

Curious about how safe Azure really is? Put your knowledge to work with this practical guide to penetration testing.

This book offers a no-faff, hands-on approach to exploring Azure penetration testing methodologies, which will get up and running in no time with the help of real-world examples, scripts, and ready-to-use source code.

As you learn about the Microsoft Azure platform and understand how hackers can attack resources hosted in the Azure cloud, you'll find out how to protect your environment by identifying vulnerabilities, along with extending your pentesting tools and capabilities.

First, you’ll be taken through the prerequisites for pentesting Azure and shown how to set up a pentesting lab. You'll then simulate attacks on Azure assets such as web applications and virtual machines from anonymous and authenticated perspectives.

In the later chapters, you'll learn about the opportunities for privilege escalation in Azure tenants and ways in which an attacker can create persistent access to an environment.

By the end of this book, you'll be able to leverage your ethical hacking skills to identify and implement different tools and techniques to perform successful penetration tests on your own Azure infrastructure.
  • 1. Azure Platform and Architecture Overview
  • 2. Building Your Own Environment
  • 3. Finding Azure Services and Vulnerabilities
  • 4. Exploiting Reader Permissions
  • 5. Exploiting Contributor Permissions on IaaS Services
  • 6. Exploiting Contributor Permissions on PaaS Services
  • 7. Exploiting Owner and Privileged Azure AD Role Permissions
  • 8. Persisting in Azure Environments
  • Tytuł: Penetration Testing Azure for Ethical Hackers. Develop practical skills to perform pentesting and risk assessment of Microsoft Azure environments
  • Autor: David Okeyode, Karl Fosaaen, Charles Horton
  • Tytuł oryginału: Penetration Testing Azure for Ethical Hackers. Develop practical skills to perform pentesting and risk assessment of Microsoft Azure environments
  • ISBN: 9781839214707, 9781839214707
  • Data wydania: 2021-11-25
  • Format: Ebook
  • Identyfikator pozycji: e_2a7j
  • Wydawca: Packt Publishing