Details zum E-Book

PowerShell Automation and Scripting for Cybersecurity. Hacking and defense for red and blue teamers

PowerShell Automation and Scripting for Cybersecurity. Hacking and defense for red and blue teamers

Miriam C. Wiesner, Tanya Janca

E-book
Kaufen Sie ein Werk auf ebookpoint.pl
Take your cybersecurity skills to the next level with this comprehensive PowerShell security guide! Whether you're on the red or blue team, you'll gain a deep understanding of PowerShell's security capabilities and how to apply them.
With years of hands-on experience, the author brings real-world use cases to demonstrate PowerShell’s critical role in offensive and defensive security.
After covering PowerShell basics and scripting fundamentals, you'll explore PowerShell Remoting and remote management technologies. You'll learn to configure and analyze Windows event logs, identifying crucial logs and IDs for effective monitoring. The book delves into PowerShell's interaction with system components, Active Directory, and Azure AD, including stealth execution methods. You’ll uncover authentication protocols, enumeration, credential theft, and exploitation, providing strategies to mitigate these risks. A dedicated red and blue team cookbook offers practical security tasks. Finally, you'll delve into mitigations such as Just Enough Administration, AMSI, application control, and code signing, emphasizing configuration, risks, exploitation, bypasses, and best practices.
By the end of this book, you’ll confidently apply PowerShell for cybersecurity, from detection to defense, staying ahead of cyber threats.
  • 1. Getting Started with PowerShell
  • 2. PowerShell Scripting Fundamentals
  • 3. Exploring PowerShell Remote Management Technologies and PowerShell Remoting
  • 4. Detection – Auditing and Monitoring
  • 5. PowerShell Is Powerful – System and API Access
  • 6. Active Directory – Attacks and Mitigation
  • 7. Hacking the Cloud – Exploiting Azure Active Directory/Entra ID
  • 8. Red Team Tasks and Cookbook
  • 9. Blue Team Tasks and Cookbook
  • 10. Language Modes and Just Enough Administration (JEA)
  • 11. AppLocker, Application Control, and Code Signing
  • 12. Exploring the Antimalware Scan Interface (AMSI)
  • 13. What Else? – Further Mitigations and Resources
  • Titel: PowerShell Automation and Scripting for Cybersecurity. Hacking and defense for red and blue teamers
  • Autor: Miriam C. Wiesner, Tanya Janca
  • Originaler Titel: PowerShell Automation and Scripting for Cybersecurity. Hacking and defense for red and blue teamers
  • ISBN: 9781800569263, 9781800569263
  • Veröffentlichungsdatum: 2023-08-16
  • Format: E-book
  • Artikelkennung: e_3ki8
  • Verleger: Packt Publishing