Bezpieczeństwo systemów

Learning Puppet Security. Secure your IT environments with the powerful security tools of Puppet

Jason Slagle

If you are a security professional whose workload is increasing, or a Puppet professional looking to increase your knowledge of security, or even an experienced systems administrator, then this book is for you. This book will take you to the next level of security automation using Puppet. The book requires no prior knowledge of Puppet to get started.

Learning Python for Forensics. Leverage the power of Python in forensic investigations - Second Edition

Preston Miller, Chapin Bryce

Digital forensics plays an integral role in solving complex cybercrimes and helping organizations make sense of cybersecurity incidents. This second edition of Learning Python for Forensics illustrates how Python can be used to support these digital investigations and permits the examiner to automate the parsing of forensic artifacts to spend more time examining actionable data.The second edition of Learning Python for Forensics will illustrate how to develop Python scripts using an iterative design. Further, it demonstrates how to leverage the various built-in and community-sourced forensics scripts and libraries available for Python today. This book will help strengthen your analysis skills and efficiency as you creatively solve real-world problems through instruction-based tutorials.By the end of this book, you will build a collection of Python scripts capable of investigating an array of forensic artifacts and master the skills of extracting metadata and parsing complex data structures into actionable reports. Most importantly, you will have developed a foundation upon which to build as you continue to learn Python and enhance your efficacy as an investigator.

Learning Python Web Penetration Testing. Automate web penetration testing activities using Python

Christian Martorella

Web penetration testing is the use of tools and code to attack a website or web app in order to assess its vulnerability to external threats. While there are an increasing number of sophisticated, ready-made tools to scan systems for vulnerabilities, the use of Python allows you to write system-specific scripts, or alter and extend existing testing tools to find, exploit, and record as many security weaknesses as possible. Learning Python Web Penetration Testing will walk you through the web application penetration testing methodology, showing you how to write your own tools with Python for each activity throughout the process. The book begins by emphasizing the importance of knowing how to write your own tools with Python for web application penetration testing. You will then learn to interact with a web application using Python, understand the anatomy of an HTTP request, URL, headers and message body, and later create a script to perform a request, and interpret the response and its headers. As you make your way through the book, you will write a web crawler using Python and the Scrappy library. The book will also help you to develop a tool to perform brute force attacks in different parts of the web application. You will then discover more on detecting and exploiting SQL injection vulnerabilities. By the end of this book, you will have successfully created an HTTP proxy based on the mitmproxy tool.

Linux for Networking Professionals. Strengthen your networking and security efforts with Linux - Second Edition

Rob VandenBrink

With Linux gaining popularity, more network services are being deployed on it due to its cost-effectiveness and flexibility. If you are a networking professional or an infrastructure engineer involved with networks, in-depth knowledge of Linux networking is paramount.Linux for Networking Professionals, Second Edition, is a comprehensive guide to building a strong foundation of Linux networking concepts. From basic Linux network configurations to major distributions and picking the right distro for your specific needs – this book covers it all.As you progress through the chapters, you’ll also find insights into diagnosing network issues, setting up robust firewall protection, and using Linux as a host for network services. The book takes you through a wide range of network services, explains why they're important, and how to configure them in an enterprise environment. With real-world examples, you'll learn how to securely configure various services and safeguard them against common attacks.As you advance to the final chapters, you’ll be well on your way towards building the foundation for an all-Linux data center. By the end of this book, you'll be able to not only configure common Linux network services confidently, but also use tried-and-tested methodologies for future Linux installations.

Linux Shell Scripting for Hackers. Automate and scale your hacking process with bash scripting

Valentine G. Nachi, Donald A. Tevault

Linux shell scripting is a foundational skill for ethical hackers and penetration testers who want to automate repetitive tasks and build powerful command-line tools. This practical guide shows you how to use bash scripting for cybersecurity automation, helping you streamline reconnaissance, exploitation, and post-exploitation workflows on Linux systems.You’ll progress from advanced bash techniques to real-world penetration testing applications, learning how to automate reconnaissance processes, parse logs, extract indicators, and develop custom exploitation utilities. Using tools such as awk, sed, grep, and regular expressions, you’ll manipulate data efficiently and craft scripts that solve real security challenges.A dedicated section on network scripting demonstrates how to build scripts that interact with remote systems, perform scanning tasks, and gather actionable information. You’ll also explore system hardening automation and learn best practices for writing secure, modular, and maintainable shell scripts.By the end of this book, you’ll have the confidence to integrate Linux shell scripting into your ethical hacking toolkit, scale your penetration testing workflow, and build reusable security tools tailored to real-world cybersecurity scenarios.

Łamanie i zabezpieczanie aplikacji w systemie iOS

Jonathan Zdziarski

Twoja lektura obowiązkowa! iOS to obecnie jeden z najpopularniejszych systemów operacyjnych, wykorzystywany w urządzeniach firmy Apple. Jednak dzięki tej popularności jest on też łakomym kąskiem dla hakerów. Uzyskanie dostępu do danych przechowywanych w telefonie może mieć katastrofalne skutki. Dlatego jeżeli tworzysz aplikacje na platformę iOS, ta książka jest dla Ciebie pozycją obowiązkową. Jak obronić się przed atakiem? Wszystkie niezbędne informacje znajdziesz w tym wyjątkowym podręczniku. W trakcie lektury dowiesz się, jak działają hakerzy, jak wyszukują słabe punkty aplikacji oraz jak modyfikują jej kod. Ponadto nauczysz się utrudniać śledzenie kodu Twojej aplikacji oraz bezpiecznie usuwać pliki (tak, aby nie było możliwe ich odtworzenie). Wśród poruszanych tematów znajdziesz również te związane z transmisją danych: wykorzystanie protokołu SSL to nie wszystko, musisz zadbać także o to, żeby nie było możliwe przejęcie sesji SSL. Weź książkę do ręki i obroń się przed atakiem! Dzięki tej książce: zrozumiesz, jak działają hakerzy zabezpieczysz swoją aplikację przez nieuprawnionymi zmianami ochronisz swoje bezpieczne połączenia bezpowrotnie usuniesz niepotrzebne pliki zagwarantujesz bezpieczeństwo danych użytkownikom Twojej aplikacji Zadbaj o bezpieczeństwo danych użytkowników Twojej aplikacji!

Machine Learning for Cybersecurity Cookbook. Over 80 recipes on how to implement machine learning algorithms for building security systems using Python

Emmanuel Tsukerman

Organizations today face a major threat in terms of cybersecurity, from malicious URLs to credential reuse, and having robust security systems can make all the difference. With this book, you'll learn how to use Python libraries such as TensorFlow and scikit-learn to implement the latest artificial intelligence (AI) techniques and handle challenges faced by cybersecurity researchers.You'll begin by exploring various machine learning (ML) techniques and tips for setting up a secure lab environment. Next, you'll implement key ML algorithms such as clustering, gradient boosting, random forest, and XGBoost. The book will guide you through constructing classifiers and features for malware, which you'll train and test on real samples. As you progress, you'll build self-learning, reliant systems to handle cybersecurity tasks such as identifying malicious URLs, spam email detection, intrusion detection, network protection, and tracking user and process behavior. Later, you'll apply generative adversarial networks (GANs) and autoencoders to advanced security tasks. Finally, you'll delve into secure and private AI to protect the privacy rights of consumers using your ML models. By the end of this book, you'll have the skills you need to tackle real-world problems faced in the cybersecurity domain using a recipe-based approach.

Machine Learning Security Principles. Keep data, networks, users, and applications safe from prying eyes

John Paul Mueller

Businesses are leveraging the power of AI to make undertakings that used to be complicated and pricy much easier, faster, and cheaper. The first part of this book will explore these processes in more depth, which will help you in understanding the role security plays in machine learning.As you progress to the second part, you’ll learn more about the environments where ML is commonly used and dive into the security threats that plague them using code, graphics, and real-world references.The next part of the book will guide you through the process of detecting hacker behaviors in the modern computing environment, where fraud takes many forms in ML, from gaining sales through fake reviews to destroying an adversary’s reputation. Once you’ve understood hacker goals and detection techniques, you’ll learn about the ramifications of deep fakes, followed by mitigation strategies.This book also takes you through best practices for embracing ethical data sourcing, which reduces the security risk associated with data. You’ll see how the simple act of removing personally identifiable information (PII) from a dataset lowers the risk of social engineering attacks.By the end of this machine learning book, you'll have an increased awareness of the various attacks and the techniques to secure your ML systems effectively.